Overview

overview

10

Static

static

10

2024-03-26...er.exe

windows7-x64

9

2024-03-26...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-03-26_dd31b55a229230b5ee2c0a6e43e73243_cryptolocker

  • Size

    386KB

  • Sample

    240326-elz3asff9z

  • MD5

    dd31b55a229230b5ee2c0a6e43e73243

  • SHA1

    8273cb60ed40493449041509c28578be8ede8e10

  • SHA256

    619f0b7877210bf519eb860bc43b58efd626123063b90db95b280d1aac121bf8

  • SHA512

    7496e61674ae5320279526823d6631a8c595881fab3033e066a914020b2ba1e28ece56c6c7f1db212cffbef804e67c3f05ad761d58efe669e37f28827384ca5c

  • SSDEEP

    6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXx:nnOflT/ZFIjBz3xjTxynGUOUhXx

Score
10/10

Malware Config

Targets

    • Target

      2024-03-26_dd31b55a229230b5ee2c0a6e43e73243_cryptolocker

    • Size

      386KB

    • MD5

      dd31b55a229230b5ee2c0a6e43e73243

    • SHA1

      8273cb60ed40493449041509c28578be8ede8e10

    • SHA256

      619f0b7877210bf519eb860bc43b58efd626123063b90db95b280d1aac121bf8

    • SHA512

      7496e61674ae5320279526823d6631a8c595881fab3033e066a914020b2ba1e28ece56c6c7f1db212cffbef804e67c3f05ad761d58efe669e37f28827384ca5c

    • SSDEEP

      6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXx:nnOflT/ZFIjBz3xjTxynGUOUhXx

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks