Overview

overview

10

Static

static

10

2024-04-05...er.exe

windows7-x64

9

2024-04-05...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-04-05_984c96f3351ec45cbe0beb7ded1ef548_cryptolocker

  • Size

    387KB

  • Sample

    240405-yar24aca61

  • MD5

    984c96f3351ec45cbe0beb7ded1ef548

  • SHA1

    a9827e746aed208104cfe44c2caf9379aa969682

  • SHA256

    162462ca245d3cb3aa417c140fd1973d2d09faf9753f5ede56162408e82fa685

  • SHA512

    3c45cb35342d0ebc849e026786aa3316a2b33dc211d2196ecbdf21184a73ccce0588d68668bab70c3adc54d7f32bcf543afb7ea71650686c07a832d73028f25c

  • SSDEEP

    6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXn:nnOflT/ZFIjBz3xjTxynGUOUhXn

Score
10/10

Malware Config

Targets

    • Target

      2024-04-05_984c96f3351ec45cbe0beb7ded1ef548_cryptolocker

    • Size

      387KB

    • MD5

      984c96f3351ec45cbe0beb7ded1ef548

    • SHA1

      a9827e746aed208104cfe44c2caf9379aa969682

    • SHA256

      162462ca245d3cb3aa417c140fd1973d2d09faf9753f5ede56162408e82fa685

    • SHA512

      3c45cb35342d0ebc849e026786aa3316a2b33dc211d2196ecbdf21184a73ccce0588d68668bab70c3adc54d7f32bcf543afb7ea71650686c07a832d73028f25c

    • SSDEEP

      6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXn:nnOflT/ZFIjBz3xjTxynGUOUhXn

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks