eb41c6e9a7e0cfd9b67c61d970ed7131d2e2d7dd2057b38110eecf67111db11d | Triage

Submit
Reports

Overview

overview

Static

static

2024-03-27...er.exe

windows7-x64

9

2024-03-27...er.exe

windows10-2004-x64

9

Sharing

General

Target

2024-03-27_c3dfa4bb05ca7ec6ff883a8ee50b099c_cryptolocker
Size

70KB
Sample

240327-eq79gacd82
MD5

c3dfa4bb05ca7ec6ff883a8ee50b099c
SHA1

9874778d4ab891499eb7dd59ebe74f67c083e5ab
SHA256

eb41c6e9a7e0cfd9b67c61d970ed7131d2e2d7dd2057b38110eecf67111db11d
SHA512

ffd48a91c549b5368167aed3e49ccbb411d8399d23fa6fcdf213cd93ac0b5fbe3ec148bf1d5be9be516623374806d29cd7f212700eff1e788141c3e8b46c2b26
SSDEEP

1536:Dk/xY0sllyGQMOtEvwDpjwycDtKkQZQRKb61vSbgZ3QzNKUoRw:DW60sllyWOtEvwDpjwF853

Score

10^/10

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

2024-03-27_c3dfa4bb05ca7ec6ff883a8ee50b099c_cryptolocker.exe

Resource

win7-20240215-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-03-27_c3dfa4bb05ca7ec6ff883a8ee50b099c_cryptolocker.exe

Resource

win10v2004-20231215-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-03-27_c3dfa4bb05ca7ec6ff883a8ee50b099c_cryptolocker
- Size
  
  70KB
- MD5
  
  c3dfa4bb05ca7ec6ff883a8ee50b099c
- SHA1
  
  9874778d4ab891499eb7dd59ebe74f67c083e5ab
- SHA256
  
  eb41c6e9a7e0cfd9b67c61d970ed7131d2e2d7dd2057b38110eecf67111db11d
- SHA512
  
  ffd48a91c549b5368167aed3e49ccbb411d8399d23fa6fcdf213cd93ac0b5fbe3ec148bf1d5be9be516623374806d29cd7f212700eff1e788141c3e8b46c2b26
- SSDEEP
  
  1536:Dk/xY0sllyGQMOtEvwDpjwycDtKkQZQRKb61vSbgZ3QzNKUoRw:DW60sllyWOtEvwDpjwF853
Score

9^/10
- Detection of CryptoLocker Variants
- Detection of Cryptolocker Samples
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy