143451648ec092f4723a9854d805dec340d80ebda74ea43821e5f91f15d00fc4 | Triage

Submit
Reports

Overview

overview

Static

static

2024-03-16...er.exe

windows7-x64

9

2024-03-16...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

Target

2024-03-16_9bcaa967f96384f2d645c5ba8fc22de8_cryptolocker
Size

35KB
Sample

240316-jqez5seg9w
MD5

9bcaa967f96384f2d645c5ba8fc22de8
SHA1

7d8f59ce56883dff887da98a4b2dff1b63c7b86a
SHA256

143451648ec092f4723a9854d805dec340d80ebda74ea43821e5f91f15d00fc4
SHA512

2e4d07332c6ac52f1370ac0cc2a21671f92dd9b3a0f5015012a80d4183173d0b6210c805bad0f61c9cea7ec8589d986178a8892281e67beb7c848f34474bd684
SSDEEP

768:qmOKYQDf5XdrDmjr5tOOtEvwDpjAajFEitQbDmoWHy:qmbhXDmjr5MOtEvwDpj5cDV

Score

10^/10

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

2024-03-16_9bcaa967f96384f2d645c5ba8fc22de8_cryptolocker.exe

Resource

win7-20240221-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-03-16_9bcaa967f96384f2d645c5ba8fc22de8_cryptolocker.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-03-16_9bcaa967f96384f2d645c5ba8fc22de8_cryptolocker
- Size
  
  35KB
- MD5
  
  9bcaa967f96384f2d645c5ba8fc22de8
- SHA1
  
  7d8f59ce56883dff887da98a4b2dff1b63c7b86a
- SHA256
  
  143451648ec092f4723a9854d805dec340d80ebda74ea43821e5f91f15d00fc4
- SHA512
  
  2e4d07332c6ac52f1370ac0cc2a21671f92dd9b3a0f5015012a80d4183173d0b6210c805bad0f61c9cea7ec8589d986178a8892281e67beb7c848f34474bd684
- SSDEEP
  
  768:qmOKYQDf5XdrDmjr5tOOtEvwDpjAajFEitQbDmoWHy:qmbhXDmjr5MOtEvwDpj5cDV
Score

9^/10
- Detection of CryptoLocker Variants
- Detection of Cryptolocker Samples
- UPX dump on OEP (original entry point)
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy