Overview

overview

10

Static

static

10

2024-03-28...er.exe

windows7-x64

9

2024-03-28...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-03-28_ecc1fa9c5ee620012bb18165f028ae45_cryptolocker

  • Size

    50KB

  • Sample

    240328-dh8pladf2z

  • MD5

    ecc1fa9c5ee620012bb18165f028ae45

  • SHA1

    c920017686dbf101ac21a8c7545dd8941ee01fb4

  • SHA256

    18eaccdd93e35e3c5349fdaf02db6546b65c5f303f06a9333bb6866541e17490

  • SHA512

    09562307c37fba300e410df3a70a113cf7adb7c1002138f73c6c7d2e8057139f21f59ce55005ebc02536c3e190caba52bc33629e821a808d4a7c15a3a1e01605

  • SSDEEP

    1536:qmbhXDmjr5MOtEvwDpj5cDtKkQZQ6ugl1:BbdDmjr+OtEvwDpjMK

Score
10/10

Malware Config

Targets

    • Target

      2024-03-28_ecc1fa9c5ee620012bb18165f028ae45_cryptolocker

    • Size

      50KB

    • MD5

      ecc1fa9c5ee620012bb18165f028ae45

    • SHA1

      c920017686dbf101ac21a8c7545dd8941ee01fb4

    • SHA256

      18eaccdd93e35e3c5349fdaf02db6546b65c5f303f06a9333bb6866541e17490

    • SHA512

      09562307c37fba300e410df3a70a113cf7adb7c1002138f73c6c7d2e8057139f21f59ce55005ebc02536c3e190caba52bc33629e821a808d4a7c15a3a1e01605

    • SSDEEP

      1536:qmbhXDmjr5MOtEvwDpj5cDtKkQZQ6ugl1:BbdDmjr+OtEvwDpjMK

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks