Overview

overview

10

Static

static

10

2024-03-19...er.exe

windows7-x64

9

2024-03-19...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-03-19_e18d61c57cebac415a004ce3e7ec82b1_cryptolocker

  • Size

    65KB

  • Sample

    240319-yrn2rsea54

  • MD5

    e18d61c57cebac415a004ce3e7ec82b1

  • SHA1

    2a36d0cf3d110271d86b9521dc9da05462808f7b

  • SHA256

    7808b9bfc460ed153afd395a723f5d246635dd3ed5442c3d3f7e3b8446aa568e

  • SHA512

    d6ca358f76ed64c4fc534031f09e1a86c311838398e14f2b0a2460696aeee7cdcdd79d6e8ba43308262c07cc9a3476158694e8d8c5393b979d61b818a82dfe9e

  • SSDEEP

    1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ3hvLcbV7V:ZVxkGOtEvwDpjcawb

Score
10/10

Malware Config

Targets

    • Target

      2024-03-19_e18d61c57cebac415a004ce3e7ec82b1_cryptolocker

    • Size

      65KB

    • MD5

      e18d61c57cebac415a004ce3e7ec82b1

    • SHA1

      2a36d0cf3d110271d86b9521dc9da05462808f7b

    • SHA256

      7808b9bfc460ed153afd395a723f5d246635dd3ed5442c3d3f7e3b8446aa568e

    • SHA512

      d6ca358f76ed64c4fc534031f09e1a86c311838398e14f2b0a2460696aeee7cdcdd79d6e8ba43308262c07cc9a3476158694e8d8c5393b979d61b818a82dfe9e

    • SSDEEP

      1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ3hvLcbV7V:ZVxkGOtEvwDpjcawb

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks