Overview

overview

10

Static

static

10

2024-03-16...er.exe

windows7-x64

9

2024-03-16...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-03-16_a434bf447201f68df17f83c122dbde26_cryptolocker

  • Size

    49KB

  • Sample

    240316-mptnpahc5w

  • MD5

    a434bf447201f68df17f83c122dbde26

  • SHA1

    38f33f9b9a8627d7014da9477fd7b6b484333697

  • SHA256

    31e9cffc18dbf13b3fb017fecb32bc61a0ec98c857a8c700308fb45f687d37e6

  • SHA512

    5034fec49cb7727a91bb1d631ae8124110bb7b674bd2b017a435a9049e6507767563d973009e6ed4605808a0660e793087eef0bbabaa452a7e6bb28d3978e363

  • SSDEEP

    768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaaEqbIu55id3AMWZpn:X6QFElP6n+gJQMOtEvwDpjB0GIWiWLnn

Score
10/10

Malware Config

Targets

    • Target

      2024-03-16_a434bf447201f68df17f83c122dbde26_cryptolocker

    • Size

      49KB

    • MD5

      a434bf447201f68df17f83c122dbde26

    • SHA1

      38f33f9b9a8627d7014da9477fd7b6b484333697

    • SHA256

      31e9cffc18dbf13b3fb017fecb32bc61a0ec98c857a8c700308fb45f687d37e6

    • SHA512

      5034fec49cb7727a91bb1d631ae8124110bb7b674bd2b017a435a9049e6507767563d973009e6ed4605808a0660e793087eef0bbabaa452a7e6bb28d3978e363

    • SSDEEP

      768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaaEqbIu55id3AMWZpn:X6QFElP6n+gJQMOtEvwDpjB0GIWiWLnn

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks