Overview

overview

10

Static

static

10

2024-03-18...er.exe

windows7-x64

9

2024-03-18...er.exe

windows10-2004-x64

9

Resubmissions

18/03/2024, 15:44

240318-s6zh6acc65 10

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-03-18_9a6d36434b9421a26603503534ecf20e_cryptolocker

  • Size

    386KB

  • Sample

    240318-s6zh6acc65

  • MD5

    9a6d36434b9421a26603503534ecf20e

  • SHA1

    4e89a290298c4e7c735c3e5673d39e6e27b5850e

  • SHA256

    3af2d51e1b0fc0415379dd4ddc1d6582cfae891b6c2768700aa0fdd926207290

  • SHA512

    8f2789aa110a9488f20766598ebba81a453699329b311810526ae269ac974718bf135add92ab1e5366cd405d9bbdc49f09810cc5f17716f845ad2a76df8ded78

  • SSDEEP

    6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXQ:nnOflT/ZFIjBz3xjTxynGUOUhXQ

Score
10/10

Malware Config

Targets

    • Target

      2024-03-18_9a6d36434b9421a26603503534ecf20e_cryptolocker

    • Size

      386KB

    • MD5

      9a6d36434b9421a26603503534ecf20e

    • SHA1

      4e89a290298c4e7c735c3e5673d39e6e27b5850e

    • SHA256

      3af2d51e1b0fc0415379dd4ddc1d6582cfae891b6c2768700aa0fdd926207290

    • SHA512

      8f2789aa110a9488f20766598ebba81a453699329b311810526ae269ac974718bf135add92ab1e5366cd405d9bbdc49f09810cc5f17716f845ad2a76df8ded78

    • SSDEEP

      6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXQ:nnOflT/ZFIjBz3xjTxynGUOUhXQ

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks