Overview

overview

10

Static

static

10

2024-03-15...er.exe

windows7-x64

9

2024-03-15...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-03-15_093ae1b9882cc971fc7a830c50ad76ab_cryptolocker

  • Size

    32KB

  • Sample

    240315-ssb6psdh29

  • MD5

    093ae1b9882cc971fc7a830c50ad76ab

  • SHA1

    0b51b55f8012c799bf8dcfcea09cc37b7de5655a

  • SHA256

    29388c54ca5e0a7204e2e9335e9737fbaba414024d79862dbd02ad9042284e5f

  • SHA512

    b2aafecb5a43a01d527dc253e7f67eeb9be7b038263862b3e118947d05f5030f36966f8ebcee80a19d4cd5ac63b99ce5634ee28f3d9c6bc1ffb847cfb7f61e3f

  • SSDEEP

    768:q0ZziOWwULueOSdE8tOOtEvwDpjeWaJIOc+4tH3MI:q0zizzOSxMOtEvwDpj/arqr

Score
10/10

Malware Config

Targets

    • Target

      2024-03-15_093ae1b9882cc971fc7a830c50ad76ab_cryptolocker

    • Size

      32KB

    • MD5

      093ae1b9882cc971fc7a830c50ad76ab

    • SHA1

      0b51b55f8012c799bf8dcfcea09cc37b7de5655a

    • SHA256

      29388c54ca5e0a7204e2e9335e9737fbaba414024d79862dbd02ad9042284e5f

    • SHA512

      b2aafecb5a43a01d527dc253e7f67eeb9be7b038263862b3e118947d05f5030f36966f8ebcee80a19d4cd5ac63b99ce5634ee28f3d9c6bc1ffb847cfb7f61e3f

    • SSDEEP

      768:q0ZziOWwULueOSdE8tOOtEvwDpjeWaJIOc+4tH3MI:q0zizzOSxMOtEvwDpj/arqr

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks