Overview

overview

10

Static

static

10

2024-03-18...er.exe

windows7-x64

9

2024-03-18...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-03-18_0abf14b92e198e537c9d30aba5c67704_cryptolocker

  • Size

    37KB

  • Sample

    240318-rnz7asah33

  • MD5

    0abf14b92e198e537c9d30aba5c67704

  • SHA1

    9950548b653bfa7f50f51349318bd6faa77cbe64

  • SHA256

    cf4665286a60bc6686f5853581a74b78bace6d172ff3dfc08b171392e5e39970

  • SHA512

    d23e1a462901a9eb05c02def2d46947a16471a752357e4160cfe295a75bfb02cff687a5847729c25365f519693eb8396878cce9b48f337b4ab75b8eddce5418f

  • SSDEEP

    768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaac4H9Y8:X6QFElP6n+gJQMOtEvwDpjBsY9b

Score
10/10

Malware Config

Targets

    • Target

      2024-03-18_0abf14b92e198e537c9d30aba5c67704_cryptolocker

    • Size

      37KB

    • MD5

      0abf14b92e198e537c9d30aba5c67704

    • SHA1

      9950548b653bfa7f50f51349318bd6faa77cbe64

    • SHA256

      cf4665286a60bc6686f5853581a74b78bace6d172ff3dfc08b171392e5e39970

    • SHA512

      d23e1a462901a9eb05c02def2d46947a16471a752357e4160cfe295a75bfb02cff687a5847729c25365f519693eb8396878cce9b48f337b4ab75b8eddce5418f

    • SSDEEP

      768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaac4H9Y8:X6QFElP6n+gJQMOtEvwDpjBsY9b

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks