Overview

overview

10

Static

static

10

2024-04-05...er.exe

windows7-x64

9

2024-04-05...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-04-05_3eb8049c670427c5cbfae76a3d8617a8_cryptolocker

  • Size

    68KB

  • Sample

    240405-zamm2sdc74

  • MD5

    3eb8049c670427c5cbfae76a3d8617a8

  • SHA1

    380a283ec58103e18fa80031cc03dd13e4951691

  • SHA256

    f79938c459fac7b79b1f0f5a580a79e09935792818577247c18c78208630756b

  • SHA512

    319c7c15deed62339126cf8b444076380090d5b0523afdea39043d46823b497d20e57b44d41cd3079eb70230eba35b849f16a8379d7d58c8e458903a0d7d5663

  • SSDEEP

    1536:Dk/xY0sllyGQMOtEvwDpjwycDtKkQZQRKb61vSbgZ3QzNKUl:DW60sllyWOtEvwDpjwF85r

Score
10/10

Malware Config

Targets

    • Target

      2024-04-05_3eb8049c670427c5cbfae76a3d8617a8_cryptolocker

    • Size

      68KB

    • MD5

      3eb8049c670427c5cbfae76a3d8617a8

    • SHA1

      380a283ec58103e18fa80031cc03dd13e4951691

    • SHA256

      f79938c459fac7b79b1f0f5a580a79e09935792818577247c18c78208630756b

    • SHA512

      319c7c15deed62339126cf8b444076380090d5b0523afdea39043d46823b497d20e57b44d41cd3079eb70230eba35b849f16a8379d7d58c8e458903a0d7d5663

    • SSDEEP

      1536:Dk/xY0sllyGQMOtEvwDpjwycDtKkQZQRKb61vSbgZ3QzNKUl:DW60sllyWOtEvwDpjwF85r

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks