Overview

overview

10

Static

static

10

2024-03-29...er.exe

windows7-x64

9

2024-03-29...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-03-29_b0651cd62797baff786e3997cd246e3b_cryptolocker

  • Size

    125KB

  • Sample

    240329-xknlzsfd2x

  • MD5

    b0651cd62797baff786e3997cd246e3b

  • SHA1

    e23e1cce2b17d31452f3fd49cf3a3ca5c21bdbe3

  • SHA256

    b5192d07cc40e25a481d6951df4aeb37ed2d238c5c04f6b9dbd53c7484818545

  • SHA512

    434b4525d80c92510a07c3828e91c5e43b15e2262ee279ceec2d121124a51f55ca77ab9db9c9ad25654c94b569ad5c5f003c3eee280b3f1dad436d653668e4df

  • SSDEEP

    1536:gUj+AIMOtEvwDpjNbwQEIPlemUhYwkkxGBpt:vCA9OtEvwDpjx

Score
10/10

Malware Config

Targets

    • Target

      2024-03-29_b0651cd62797baff786e3997cd246e3b_cryptolocker

    • Size

      125KB

    • MD5

      b0651cd62797baff786e3997cd246e3b

    • SHA1

      e23e1cce2b17d31452f3fd49cf3a3ca5c21bdbe3

    • SHA256

      b5192d07cc40e25a481d6951df4aeb37ed2d238c5c04f6b9dbd53c7484818545

    • SHA512

      434b4525d80c92510a07c3828e91c5e43b15e2262ee279ceec2d121124a51f55ca77ab9db9c9ad25654c94b569ad5c5f003c3eee280b3f1dad436d653668e4df

    • SSDEEP

      1536:gUj+AIMOtEvwDpjNbwQEIPlemUhYwkkxGBpt:vCA9OtEvwDpjx

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks