Overview

overview

10

Static

static

10

2024-04-05...er.exe

windows7-x64

9

2024-04-05...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-04-05_da9602af25d32224f78c043b91928b59_cryptolocker

  • Size

    32KB

  • Sample

    240405-zn3anadb3s

  • MD5

    da9602af25d32224f78c043b91928b59

  • SHA1

    943d15719d2b6e58377ae238eb7fe978197cc1f5

  • SHA256

    96252054f89940acbe66f2b6c1ffc808bcc484f9be9460314e2cb8e06b64b972

  • SHA512

    84604cac26d70a81562549a2f2e03a96640484d4999b6a367bae047a23ebf7a54ade29f530d8a90f3c838a8aa97430529835dcbd55d9fb0b1e7924c56f16551a

  • SSDEEP

    384:bmM0V/YPvnr801TRoUGPh4TKt6ATt1DqgPa3s/zzoCt9RXmi3E0:b7o/2n1TCraU6GD1a4Xt9RLE0

Score
10/10

Malware Config

Targets

    • Target

      2024-04-05_da9602af25d32224f78c043b91928b59_cryptolocker

    • Size

      32KB

    • MD5

      da9602af25d32224f78c043b91928b59

    • SHA1

      943d15719d2b6e58377ae238eb7fe978197cc1f5

    • SHA256

      96252054f89940acbe66f2b6c1ffc808bcc484f9be9460314e2cb8e06b64b972

    • SHA512

      84604cac26d70a81562549a2f2e03a96640484d4999b6a367bae047a23ebf7a54ade29f530d8a90f3c838a8aa97430529835dcbd55d9fb0b1e7924c56f16551a

    • SSDEEP

      384:bmM0V/YPvnr801TRoUGPh4TKt6ATt1DqgPa3s/zzoCt9RXmi3E0:b7o/2n1TCraU6GD1a4Xt9RLE0

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks