Overview

overview

10

Static

static

10

2024-03-27...er.exe

windows7-x64

9

2024-03-27...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-03-27_90590621942cef2b2d3a9c5a94a82402_cryptolocker

  • Size

    32KB

  • Sample

    240327-jef33aae8x

  • MD5

    90590621942cef2b2d3a9c5a94a82402

  • SHA1

    415ca5a6ddff624b8174d37792698f2f31134cad

  • SHA256

    abeaffb3c6f14133aaf356c212095d5540dc74d587683d201a9c2f8bf0e2ed4f

  • SHA512

    50f3d4ced2698da513c387932b30f2488b00218238005085cc843ad2c6d45dd12c4127c0037068509d83268d1134188459e965a39f99e00b1df4a46f236b8370

  • SSDEEP

    384:bA74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUr766SJ/Tl+bltoGkUT:bA74zYcgT/Ekd0ryfjQRSlwltYUT

Score
10/10

Malware Config

Targets

    • Target

      2024-03-27_90590621942cef2b2d3a9c5a94a82402_cryptolocker

    • Size

      32KB

    • MD5

      90590621942cef2b2d3a9c5a94a82402

    • SHA1

      415ca5a6ddff624b8174d37792698f2f31134cad

    • SHA256

      abeaffb3c6f14133aaf356c212095d5540dc74d587683d201a9c2f8bf0e2ed4f

    • SHA512

      50f3d4ced2698da513c387932b30f2488b00218238005085cc843ad2c6d45dd12c4127c0037068509d83268d1134188459e965a39f99e00b1df4a46f236b8370

    • SSDEEP

      384:bA74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUr766SJ/Tl+bltoGkUT:bA74zYcgT/Ekd0ryfjQRSlwltYUT

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks