Overview

overview

10

Static

static

10

2024-04-05...er.exe

windows7-x64

9

2024-04-05...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-04-05_7fcd42dc340c446c1514a1e55e426752_cryptolocker

  • Size

    388KB

  • Sample

    240405-eexnlaca68

  • MD5

    7fcd42dc340c446c1514a1e55e426752

  • SHA1

    a426c6bff4bbe191c64e280976e5b6184de09058

  • SHA256

    6856ea25bf822cec89f4baf343c59507e9710c442f87e658b6c422127a07fd6f

  • SHA512

    c2863d0a7a79f490aaf4ee5085dd3a2c3492cc796d64fa33bc03671bab415d517784d67efd328a50e211921799124fa44ebe4a3f0d84728f676204ac9c4d6258

  • SSDEEP

    6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXC:nnOflT/ZFIjBz3xjTxynGUOUhXC

Score
10/10

Malware Config

Targets

    • Target

      2024-04-05_7fcd42dc340c446c1514a1e55e426752_cryptolocker

    • Size

      388KB

    • MD5

      7fcd42dc340c446c1514a1e55e426752

    • SHA1

      a426c6bff4bbe191c64e280976e5b6184de09058

    • SHA256

      6856ea25bf822cec89f4baf343c59507e9710c442f87e658b6c422127a07fd6f

    • SHA512

      c2863d0a7a79f490aaf4ee5085dd3a2c3492cc796d64fa33bc03671bab415d517784d67efd328a50e211921799124fa44ebe4a3f0d84728f676204ac9c4d6258

    • SSDEEP

      6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXC:nnOflT/ZFIjBz3xjTxynGUOUhXC

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks