Overview

overview

10

Static

static

10

2024-03-28...er.exe

windows7-x64

9

2024-03-28...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-03-28_f6aa63a80cb9b6634b842b61ac1df1b1_cryptolocker

  • Size

    40KB

  • Sample

    240328-dkcd6sdf3y

  • MD5

    f6aa63a80cb9b6634b842b61ac1df1b1

  • SHA1

    0728160570e64b0714f99402e4ecae60f944b079

  • SHA256

    d83eef8c0013357b3d09f99e9f71a73c5ae622865a81f0ee6cbfd37a72ae8fbe

  • SHA512

    5d1da12008b48c603671012b07b874e8a3d14cbb45040e2a5e0f743d9d194a070b695a19244d3e8001339756ddda070c2b044e6cea104ddb0c1c79d979e79668

  • SSDEEP

    768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAIP:bCDOw9aMDooc+vAm

Score
10/10

Malware Config

Targets

    • Target

      2024-03-28_f6aa63a80cb9b6634b842b61ac1df1b1_cryptolocker

    • Size

      40KB

    • MD5

      f6aa63a80cb9b6634b842b61ac1df1b1

    • SHA1

      0728160570e64b0714f99402e4ecae60f944b079

    • SHA256

      d83eef8c0013357b3d09f99e9f71a73c5ae622865a81f0ee6cbfd37a72ae8fbe

    • SHA512

      5d1da12008b48c603671012b07b874e8a3d14cbb45040e2a5e0f743d9d194a070b695a19244d3e8001339756ddda070c2b044e6cea104ddb0c1c79d979e79668

    • SSDEEP

      768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAIP:bCDOw9aMDooc+vAm

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks