Overview

overview

10

Static

static

10

2024-04-05...er.exe

windows7-x64

9

2024-04-05...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-04-05_35b32193ef90bd13c8af6aaa5f1f6e99_cryptolocker

  • Size

    128KB

  • Sample

    240405-3dwa5seg6w

  • MD5

    35b32193ef90bd13c8af6aaa5f1f6e99

  • SHA1

    65e4e72c6bf1a4a39dc12c20e143ceadf564c8ad

  • SHA256

    fa8daac68b8c8bda0d82e025f023516e33e67fcef43ff129ec18bc9befe063b8

  • SHA512

    4bab1d539482a7474c7182dfa5aab6f9fbe35f6244dd77f43ac99403bc31375c5fa30844a06371b300a92d82956bfe0f0286c50ae0bcbd36737711ed802a34e7

  • SSDEEP

    1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfIuBKLUYOVbvh//i7k:vCjsIOtEvwDpj5H9YvQd2RZ

Score
10/10

Malware Config

Targets

    • Target

      2024-04-05_35b32193ef90bd13c8af6aaa5f1f6e99_cryptolocker

    • Size

      128KB

    • MD5

      35b32193ef90bd13c8af6aaa5f1f6e99

    • SHA1

      65e4e72c6bf1a4a39dc12c20e143ceadf564c8ad

    • SHA256

      fa8daac68b8c8bda0d82e025f023516e33e67fcef43ff129ec18bc9befe063b8

    • SHA512

      4bab1d539482a7474c7182dfa5aab6f9fbe35f6244dd77f43ac99403bc31375c5fa30844a06371b300a92d82956bfe0f0286c50ae0bcbd36737711ed802a34e7

    • SSDEEP

      1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfIuBKLUYOVbvh//i7k:vCjsIOtEvwDpj5H9YvQd2RZ

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks