Overview

overview

10

Static

static

10

2024-03-15...er.exe

windows7-x64

9

2024-03-15...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-03-15_e717558b57b7987d70dc01b31f6dee8d_cryptolocker

  • Size

    65KB

  • Sample

    240315-mx8gtaee7y

  • MD5

    e717558b57b7987d70dc01b31f6dee8d

  • SHA1

    184a8aba7d56f1e750dedfee09bc75e402f9499f

  • SHA256

    11c635677f6c818c801a5e5ad0cbcacac47a1ab4e6a3cc1c85ecdea2b389dd37

  • SHA512

    89b5ebc293c21a3cac44dff58003a96c2006ed162e21c8f1cc0e95e6d9183ae183b88fe9329ed7589873e7dc364336bded156a687fc255e218a16b73cfc1f930

  • SSDEEP

    1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ3hvLcbV+:ZVxkGOtEvwDpjcawY

Score
10/10

Malware Config

Targets

    • Target

      2024-03-15_e717558b57b7987d70dc01b31f6dee8d_cryptolocker

    • Size

      65KB

    • MD5

      e717558b57b7987d70dc01b31f6dee8d

    • SHA1

      184a8aba7d56f1e750dedfee09bc75e402f9499f

    • SHA256

      11c635677f6c818c801a5e5ad0cbcacac47a1ab4e6a3cc1c85ecdea2b389dd37

    • SHA512

      89b5ebc293c21a3cac44dff58003a96c2006ed162e21c8f1cc0e95e6d9183ae183b88fe9329ed7589873e7dc364336bded156a687fc255e218a16b73cfc1f930

    • SSDEEP

      1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ3hvLcbV+:ZVxkGOtEvwDpjcawY

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks