26d9a4a014f279831ac1fd65889e26ce18c11711eae7727ecb7e30675219d10f | Triage

Submit
Reports

Overview

overview

Static

static

2024-03-25...er.exe

windows7-x64

9

2024-03-25...er.exe

windows10-2004-x64

9

Sharing

General

Target

2024-03-25_ee2b8ee0e04599ba7e5590a5b13c5995_cryptolocker
Size

72KB
Sample

240325-3mhfmsag86
MD5

ee2b8ee0e04599ba7e5590a5b13c5995
SHA1

8d5298d56e434a54c2aca169d04f6b576e233c29
SHA256

26d9a4a014f279831ac1fd65889e26ce18c11711eae7727ecb7e30675219d10f
SHA512

ba6f0cf0e785e56455756c2e1b0bbbda6d3630709bd0fa2b324719e5d361475b49b081d7a1845236dc247836eafd1de18f993d36653b340d02aeca3dfb524430
SSDEEP

1536:X6QFElP6n+gJQMOtEvwDpjBZYTjipvF2bx1rHs+:X6a+SOtEvwDpjBZYvQd2N

Score

10^/10

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

2024-03-25_ee2b8ee0e04599ba7e5590a5b13c5995_cryptolocker.exe

Resource

win7-20240221-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-03-25_ee2b8ee0e04599ba7e5590a5b13c5995_cryptolocker.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-03-25_ee2b8ee0e04599ba7e5590a5b13c5995_cryptolocker
- Size
  
  72KB
- MD5
  
  ee2b8ee0e04599ba7e5590a5b13c5995
- SHA1
  
  8d5298d56e434a54c2aca169d04f6b576e233c29
- SHA256
  
  26d9a4a014f279831ac1fd65889e26ce18c11711eae7727ecb7e30675219d10f
- SHA512
  
  ba6f0cf0e785e56455756c2e1b0bbbda6d3630709bd0fa2b324719e5d361475b49b081d7a1845236dc247836eafd1de18f993d36653b340d02aeca3dfb524430
- SSDEEP
  
  1536:X6QFElP6n+gJQMOtEvwDpjBZYTjipvF2bx1rHs+:X6a+SOtEvwDpjBZYvQd2N
Score

9^/10
- Detection of CryptoLocker Variants
- Detection of Cryptolocker Samples
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy