ad16fe6e995bbc43e4e783cabc9352ac79fb165a95dd2c0cf9b21c50cb502450 | Triage

Submit
Reports

Overview

overview

Static

static

2024-03-27...er.exe

windows7-x64

9

2024-03-27...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

Target

2024-03-27_40f3cf69d3df053dca4b470ba5fdc970_cryptolocker
Size

51KB
Sample

240327-ja3fhafd56
MD5

40f3cf69d3df053dca4b470ba5fdc970
SHA1

22a01a6135796ea6dfabe2fb0ea6b58ec39098ec
SHA256

ad16fe6e995bbc43e4e783cabc9352ac79fb165a95dd2c0cf9b21c50cb502450
SHA512

bec8a4d21cf2dc59ac117ac2120a6a53c26ba95860d9e5c8b48a090554b5a74a66f5eac4542b28e15e32287e52de6091f6b6b91dce3b14f0bc566dfbbd33acac
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/BtOOtEvwDpjBVaD3E09vxmlcXkC:X6QFElP6n+gJBMOtEvwDpjBtExmlK

Score

10^/10

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

2024-03-27_40f3cf69d3df053dca4b470ba5fdc970_cryptolocker.exe

Resource

win7-20240221-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-03-27_40f3cf69d3df053dca4b470ba5fdc970_cryptolocker.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-03-27_40f3cf69d3df053dca4b470ba5fdc970_cryptolocker
- Size
  
  51KB
- MD5
  
  40f3cf69d3df053dca4b470ba5fdc970
- SHA1
  
  22a01a6135796ea6dfabe2fb0ea6b58ec39098ec
- SHA256
  
  ad16fe6e995bbc43e4e783cabc9352ac79fb165a95dd2c0cf9b21c50cb502450
- SHA512
  
  bec8a4d21cf2dc59ac117ac2120a6a53c26ba95860d9e5c8b48a090554b5a74a66f5eac4542b28e15e32287e52de6091f6b6b91dce3b14f0bc566dfbbd33acac
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/BtOOtEvwDpjBVaD3E09vxmlcXkC:X6QFElP6n+gJBMOtEvwDpjBtExmlK
Score

9^/10
- Detection of CryptoLocker Variants
- Detection of Cryptolocker Samples
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy