Overview

overview

10

Static

static

10

2024-03-15...er.exe

windows7-x64

9

2024-03-15...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-03-15_5f403988b666531f63b43b12145bc95f_cryptolocker

  • Size

    39KB

  • Sample

    240315-ybztbshc7z

  • MD5

    5f403988b666531f63b43b12145bc95f

  • SHA1

    e14aa1214ed1611dc872ef55de8e50d65ca0ec8c

  • SHA256

    57f0127e52d303d6ec85b2880f72aca43b8965d321e0c3d78a0d5c71c390e9c8

  • SHA512

    8984170ad64440fdb8d00739d4a88ed31c76f8660ac7d280e8bfabe4133bb0f703a81a6ede33dcc853cfe7b63f5b7729ea850ed49d85dacba16968ff3b232275

  • SSDEEP

    768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjLen7n+oT4:ZzFbxmLPWQMOtEvwDpjLe54

Score
10/10

Malware Config

Targets

    • Target

      2024-03-15_5f403988b666531f63b43b12145bc95f_cryptolocker

    • Size

      39KB

    • MD5

      5f403988b666531f63b43b12145bc95f

    • SHA1

      e14aa1214ed1611dc872ef55de8e50d65ca0ec8c

    • SHA256

      57f0127e52d303d6ec85b2880f72aca43b8965d321e0c3d78a0d5c71c390e9c8

    • SHA512

      8984170ad64440fdb8d00739d4a88ed31c76f8660ac7d280e8bfabe4133bb0f703a81a6ede33dcc853cfe7b63f5b7729ea850ed49d85dacba16968ff3b232275

    • SSDEEP

      768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjLen7n+oT4:ZzFbxmLPWQMOtEvwDpjLe54

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks