Overview

overview

10

Static

static

10

2024-03-27...er.exe

windows7-x64

9

2024-03-27...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-03-27_2e9e7add26810894e27818efba2531a5_cryptolocker

  • Size

    37KB

  • Sample

    240327-bwwk3shb45

  • MD5

    2e9e7add26810894e27818efba2531a5

  • SHA1

    471bfa4f40635c023f7cdf7648f49d053939af5c

  • SHA256

    9ec1b4479541ddd25d099ecba40870a5120dc9298b2a1f4e82a4900e8d7ea9bc

  • SHA512

    d8c916a18fbc401d51c00b32e74f328319eff1d1cde95a2a08bc5f7c9d6af9e7812111ca5142a2aa7041a5bf2a70314ce477b1cf81e507cbda828ac247cfc7c3

  • SSDEEP

    768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjLenUj:ZzFbxmLPWQMOtEvwDpjLeG

Score
10/10

Malware Config

Targets

    • Target

      2024-03-27_2e9e7add26810894e27818efba2531a5_cryptolocker

    • Size

      37KB

    • MD5

      2e9e7add26810894e27818efba2531a5

    • SHA1

      471bfa4f40635c023f7cdf7648f49d053939af5c

    • SHA256

      9ec1b4479541ddd25d099ecba40870a5120dc9298b2a1f4e82a4900e8d7ea9bc

    • SHA512

      d8c916a18fbc401d51c00b32e74f328319eff1d1cde95a2a08bc5f7c9d6af9e7812111ca5142a2aa7041a5bf2a70314ce477b1cf81e507cbda828ac247cfc7c3

    • SSDEEP

      768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjLenUj:ZzFbxmLPWQMOtEvwDpjLeG

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks