Overview

overview

10

Static

static

10

2024-03-15...er.exe

windows7-x64

9

2024-03-15...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-03-15_6468ad7c8bd3fa077a4cac4f6759be1a_cryptolocker

  • Size

    61KB

  • Sample

    240315-1c8tqsbf5s

  • MD5

    6468ad7c8bd3fa077a4cac4f6759be1a

  • SHA1

    d14d8adabc6018c831562ae8bf8022384039e535

  • SHA256

    2427072fd2e6592424d63414e56a98be0861817041b882ffc593011e3b5527c7

  • SHA512

    85a37aab0b9a1c1954509b006bbbf441870450838ddaea025f35e8cf2a32818fad7b02194c9a437cda57246854db4545a5fc2e5622d6d3aedde2022286a23611

  • SSDEEP

    1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMXbJ:TCjsIOtEvwDpj5HE/OUHnSMu

Score
10/10

Malware Config

Targets

    • Target

      2024-03-15_6468ad7c8bd3fa077a4cac4f6759be1a_cryptolocker

    • Size

      61KB

    • MD5

      6468ad7c8bd3fa077a4cac4f6759be1a

    • SHA1

      d14d8adabc6018c831562ae8bf8022384039e535

    • SHA256

      2427072fd2e6592424d63414e56a98be0861817041b882ffc593011e3b5527c7

    • SHA512

      85a37aab0b9a1c1954509b006bbbf441870450838ddaea025f35e8cf2a32818fad7b02194c9a437cda57246854db4545a5fc2e5622d6d3aedde2022286a23611

    • SSDEEP

      1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMXbJ:TCjsIOtEvwDpj5HE/OUHnSMu

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks