Overview

overview

10

Static

static

10

2024-03-29...er.exe

windows7-x64

9

2024-03-29...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-03-29_41898732dcd0213ea63b6c6d9c4623ae_cryptolocker

  • Size

    387KB

  • Sample

    240329-ax36wadd66

  • MD5

    41898732dcd0213ea63b6c6d9c4623ae

  • SHA1

    7e860f1514036578c30bbecf7bbd79140d7a4439

  • SHA256

    a00d9d017707b17fb4186556d72d086a7552b82874ced9c5d83c65a2d818e5be

  • SHA512

    e45b007309031134c2630366bb7a43cafff7a73358c5ff8aafbe3811c8be93671f770a0179093200343d65bd820c8dc715ff5f1a2aa74694bb1dd682e26ba591

  • SSDEEP

    6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXp:nnOflT/ZFIjBz3xjTxynGUOUhXp

Score
10/10

Malware Config

Targets

    • Target

      2024-03-29_41898732dcd0213ea63b6c6d9c4623ae_cryptolocker

    • Size

      387KB

    • MD5

      41898732dcd0213ea63b6c6d9c4623ae

    • SHA1

      7e860f1514036578c30bbecf7bbd79140d7a4439

    • SHA256

      a00d9d017707b17fb4186556d72d086a7552b82874ced9c5d83c65a2d818e5be

    • SHA512

      e45b007309031134c2630366bb7a43cafff7a73358c5ff8aafbe3811c8be93671f770a0179093200343d65bd820c8dc715ff5f1a2aa74694bb1dd682e26ba591

    • SSDEEP

      6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXp:nnOflT/ZFIjBz3xjTxynGUOUhXp

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks