Overview

overview

10

Static

static

10

2024-03-29...er.exe

windows7-x64

9

2024-03-29...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-03-29_d00b77ffcac2dccc2e2e27ce0d28ac38_cryptolocker

  • Size

    81KB

  • Sample

    240329-enj4vshd3t

  • MD5

    d00b77ffcac2dccc2e2e27ce0d28ac38

  • SHA1

    05308ca88fb6f980570bd0c9ff569ceae6b6eee4

  • SHA256

    ba56efb9da1477551c0eb699298da61c7d14d011036490603487453b68c5c47a

  • SHA512

    4b28d489c2eaec57daaebbecaa15a4c9d240ecb109dba6c4758b168fe102bae2ddd3264f0feb52ba7413e7ae0f225d4c6135b79f504f0390eaa7760b2c05a661

  • SSDEEP

    1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMAe:TCjsIOtEvwDpj5HE/OUHnSMB

Score
10/10

Malware Config

Targets

    • Target

      2024-03-29_d00b77ffcac2dccc2e2e27ce0d28ac38_cryptolocker

    • Size

      81KB

    • MD5

      d00b77ffcac2dccc2e2e27ce0d28ac38

    • SHA1

      05308ca88fb6f980570bd0c9ff569ceae6b6eee4

    • SHA256

      ba56efb9da1477551c0eb699298da61c7d14d011036490603487453b68c5c47a

    • SHA512

      4b28d489c2eaec57daaebbecaa15a4c9d240ecb109dba6c4758b168fe102bae2ddd3264f0feb52ba7413e7ae0f225d4c6135b79f504f0390eaa7760b2c05a661

    • SSDEEP

      1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMAe:TCjsIOtEvwDpj5HE/OUHnSMB

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks