Overview

overview

10

Static

static

10

2024-04-06...er.exe

windows7-x64

9

2024-04-06...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-04-06_c82831c07f49e0c0cc314fdd4ab9d6bd_cryptolocker

  • Size

    44KB

  • Sample

    240406-fndshsbh95

  • MD5

    c82831c07f49e0c0cc314fdd4ab9d6bd

  • SHA1

    9455ccf0cd1ab1f42b9e0c5a84f72a3b2afb34a7

  • SHA256

    05a1ad12917ed0b63d82f3d22aafca9e59abab4900eeee34600c5c9b73e8be9e

  • SHA512

    5f033377872ba1aef90da2a05dd8b00bbaf0ab4aa73ef3d6fb258a2bb99aa2b5484cc48069e2d11aecced6e4a3e80270b29533347eec06c8a98572e9af71e89a

  • SSDEEP

    768:btB9g/WItCSsAGjX7r3BPOMHoc/QQJP5WPA+:btB9g/xtCSKfxLIc/uH

Score
10/10

Malware Config

Targets

    • Target

      2024-04-06_c82831c07f49e0c0cc314fdd4ab9d6bd_cryptolocker

    • Size

      44KB

    • MD5

      c82831c07f49e0c0cc314fdd4ab9d6bd

    • SHA1

      9455ccf0cd1ab1f42b9e0c5a84f72a3b2afb34a7

    • SHA256

      05a1ad12917ed0b63d82f3d22aafca9e59abab4900eeee34600c5c9b73e8be9e

    • SHA512

      5f033377872ba1aef90da2a05dd8b00bbaf0ab4aa73ef3d6fb258a2bb99aa2b5484cc48069e2d11aecced6e4a3e80270b29533347eec06c8a98572e9af71e89a

    • SSDEEP

      768:btB9g/WItCSsAGjX7r3BPOMHoc/QQJP5WPA+:btB9g/xtCSKfxLIc/uH

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks