Overview

overview

10

Static

static

10

2024-03-14...er.exe

windows7-x64

9

2024-03-14...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-03-14_8cc362819f29f28214cd33aaddb00e92_cryptolocker

  • Size

    36KB

  • Sample

    240314-fax91ach94

  • MD5

    8cc362819f29f28214cd33aaddb00e92

  • SHA1

    9ad1d018f15d06e5bd8fe86a5fe33cfad9d8f58c

  • SHA256

    c060a1d907a218d62a6f5cd59fc7e342c54037ef049a0fdc0b569d4129f9e6e1

  • SHA512

    0cd03b2da34f73a962fcf100799c4ec501f29c8d4b5eb74e02dd7375e69bd7f85499720ddf59ef59c965c20d2ba1e80881b86754a1718f1077f659c100c1fa45

  • SSDEEP

    768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4/UkRYzMAZ+a:vj+jsMQMOtEvwDpj5HcSYPt

Score
10/10

Malware Config

Targets

    • Target

      2024-03-14_8cc362819f29f28214cd33aaddb00e92_cryptolocker

    • Size

      36KB

    • MD5

      8cc362819f29f28214cd33aaddb00e92

    • SHA1

      9ad1d018f15d06e5bd8fe86a5fe33cfad9d8f58c

    • SHA256

      c060a1d907a218d62a6f5cd59fc7e342c54037ef049a0fdc0b569d4129f9e6e1

    • SHA512

      0cd03b2da34f73a962fcf100799c4ec501f29c8d4b5eb74e02dd7375e69bd7f85499720ddf59ef59c965c20d2ba1e80881b86754a1718f1077f659c100c1fa45

    • SSDEEP

      768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4/UkRYzMAZ+a:vj+jsMQMOtEvwDpj5HcSYPt

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks