Overview

overview

10

Static

static

10

2024-03-14...er.exe

windows7-x64

9

2024-03-14...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-03-14_b297365cc2c5fdbf8537631c1fc3d67c_cryptolocker

  • Size

    50KB

  • Sample

    240314-q7bsdafh28

  • MD5

    b297365cc2c5fdbf8537631c1fc3d67c

  • SHA1

    c9d5e8280db2b49070ef63dcb1b589ad074710a1

  • SHA256

    80b35afe85b0c0dade44d89f3188ff40d750117384cbf2af82fe79f30a8cc21e

  • SHA512

    5d18a5142d4df6e082948f79082a89a63adb50f1a4cb1d02d93595fc421dd12bd8301411e93bcf47a1895c44c5e55977a4df34d4261ea166229b05a237d179ce

  • SSDEEP

    768:79inqyNR/QtOOtEvwDpjBK/rJ+Nw8qn8pKIRszH:79mqyNhQMOtEvwDpjBxe8TpXRSH

Score
10/10

Malware Config

Targets

    • Target

      2024-03-14_b297365cc2c5fdbf8537631c1fc3d67c_cryptolocker

    • Size

      50KB

    • MD5

      b297365cc2c5fdbf8537631c1fc3d67c

    • SHA1

      c9d5e8280db2b49070ef63dcb1b589ad074710a1

    • SHA256

      80b35afe85b0c0dade44d89f3188ff40d750117384cbf2af82fe79f30a8cc21e

    • SHA512

      5d18a5142d4df6e082948f79082a89a63adb50f1a4cb1d02d93595fc421dd12bd8301411e93bcf47a1895c44c5e55977a4df34d4261ea166229b05a237d179ce

    • SSDEEP

      768:79inqyNR/QtOOtEvwDpjBK/rJ+Nw8qn8pKIRszH:79mqyNhQMOtEvwDpjBxe8TpXRSH

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks