Overview

overview

10

Static

static

10

2024-03-28...er.exe

windows7-x64

9

2024-03-28...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-03-28_d47c7e659d0880fea07225ecff240d14_cryptolocker

  • Size

    81KB

  • Sample

    240328-zrswdsgd5t

  • MD5

    d47c7e659d0880fea07225ecff240d14

  • SHA1

    f2f116b4b0827c4ca811d46c2fd37b7e464a623c

  • SHA256

    36e35b4f62e5fc24f294e0ae123e6abcebf67aa4f0d813e377d8810e07bba14c

  • SHA512

    6e3becaa50cd554d45823a9555ff15dd6daa769f39596bf95f101c6ce8cae7d36f288f6f1c6f60345902bb360d89016380b04c7cf76e88ef092e24a0550e8c27

  • SSDEEP

    1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMra:TCjsIOtEvwDpj5HE/OUHnSM0

Score
10/10

Malware Config

Targets

    • Target

      2024-03-28_d47c7e659d0880fea07225ecff240d14_cryptolocker

    • Size

      81KB

    • MD5

      d47c7e659d0880fea07225ecff240d14

    • SHA1

      f2f116b4b0827c4ca811d46c2fd37b7e464a623c

    • SHA256

      36e35b4f62e5fc24f294e0ae123e6abcebf67aa4f0d813e377d8810e07bba14c

    • SHA512

      6e3becaa50cd554d45823a9555ff15dd6daa769f39596bf95f101c6ce8cae7d36f288f6f1c6f60345902bb360d89016380b04c7cf76e88ef092e24a0550e8c27

    • SSDEEP

      1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMra:TCjsIOtEvwDpj5HE/OUHnSM0

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks