Overview

overview

10

Static

static

10

2024-03-16...er.exe

windows7-x64

9

2024-03-16...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-03-16_55425bd23016ed056762c57b53b31f97_cryptolocker

  • Size

    44KB

  • Sample

    240316-mswbpahd4z

  • MD5

    55425bd23016ed056762c57b53b31f97

  • SHA1

    ca3ca33333c20dde05a1c3995838ffbf3abbed05

  • SHA256

    87ef48f1c7428e52149787a99444bef27b593ff5c35cb23297167eb0e529178c

  • SHA512

    8b99a0b755805f4b9ec5ddc7e9ab27102f4982e01b41689647a11fc2fac2714fdb6f0a223bb831b63cd422284f4a9cbf8877e8dc7791d7579bce239999e61302

  • SSDEEP

    768:bxNQIE0eBhkL2Fo1CCwgfjOg1tsJ6zeen754XcwxbFqRoN63:bxNrC7kYo1Fxf3s05rwxbFvN63

Score
10/10

Malware Config

Targets

    • Target

      2024-03-16_55425bd23016ed056762c57b53b31f97_cryptolocker

    • Size

      44KB

    • MD5

      55425bd23016ed056762c57b53b31f97

    • SHA1

      ca3ca33333c20dde05a1c3995838ffbf3abbed05

    • SHA256

      87ef48f1c7428e52149787a99444bef27b593ff5c35cb23297167eb0e529178c

    • SHA512

      8b99a0b755805f4b9ec5ddc7e9ab27102f4982e01b41689647a11fc2fac2714fdb6f0a223bb831b63cd422284f4a9cbf8877e8dc7791d7579bce239999e61302

    • SSDEEP

      768:bxNQIE0eBhkL2Fo1CCwgfjOg1tsJ6zeen754XcwxbFqRoN63:bxNrC7kYo1Fxf3s05rwxbFvN63

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks