Overview

overview

10

Static

static

10

2024-04-05...er.exe

windows7-x64

9

2024-04-05...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-04-05_153b694e71be34612b5b05ea4d895d3c_cryptolocker

  • Size

    96KB

  • Sample

    240405-h83ngseg67

  • MD5

    153b694e71be34612b5b05ea4d895d3c

  • SHA1

    60e0f87ebdce5809805011c9daaa43d10304b5e9

  • SHA256

    552275300cb035950e6237a6a189a2409b19a245980e5a9bcb243e67b10a2006

  • SHA512

    c6fe2549e2d1db2b61a6dbc9ab73e016ec17c7155aaa0d0b1d3e53b72b1e3630cea8c60b0b78f6b5233e1512197f3a940177845f4947e76fc9716b575e113f0c

  • SSDEEP

    1536:V6QFElP6n+gMQMOtEvwDpjQGYQbN/PKwNgpZl:V6a+pOtEvwDpjtzw

Score
10/10

Malware Config

Targets

    • Target

      2024-04-05_153b694e71be34612b5b05ea4d895d3c_cryptolocker

    • Size

      96KB

    • MD5

      153b694e71be34612b5b05ea4d895d3c

    • SHA1

      60e0f87ebdce5809805011c9daaa43d10304b5e9

    • SHA256

      552275300cb035950e6237a6a189a2409b19a245980e5a9bcb243e67b10a2006

    • SHA512

      c6fe2549e2d1db2b61a6dbc9ab73e016ec17c7155aaa0d0b1d3e53b72b1e3630cea8c60b0b78f6b5233e1512197f3a940177845f4947e76fc9716b575e113f0c

    • SSDEEP

      1536:V6QFElP6n+gMQMOtEvwDpjQGYQbN/PKwNgpZl:V6a+pOtEvwDpjtzw

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks