Overview

overview

10

Static

static

10

2024-04-06...er.exe

windows7-x64

9

2024-04-06...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-06_f355bd5963b8f63dcf62c2671bef1316_cryptolocker

  • Size

    60KB

  • Sample

    240406-fsg1qsbd8t

  • MD5

    f355bd5963b8f63dcf62c2671bef1316

  • SHA1

    9897542257e152d8be34812e9c7cda32ad882cff

  • SHA256

    c3f8a9edcc8005a4daf85290960b535bc6fbed225062adfd8b20e5cec40dacf7

  • SHA512

    544563f91343c609f8dd791dd5d59920b1b0b808de9ab4228779d564c3a24926e21e713e15c061ff4d77659e1601c92f7a93ed9e7bf4843ee7df01d027908575

  • SSDEEP

    1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMTIM:TCjsIOtEvwDpj5HE/OUHnSMu

Score
10/10

Malware Config

Targets

    • Target

      2024-04-06_f355bd5963b8f63dcf62c2671bef1316_cryptolocker

    • Size

      60KB

    • MD5

      f355bd5963b8f63dcf62c2671bef1316

    • SHA1

      9897542257e152d8be34812e9c7cda32ad882cff

    • SHA256

      c3f8a9edcc8005a4daf85290960b535bc6fbed225062adfd8b20e5cec40dacf7

    • SHA512

      544563f91343c609f8dd791dd5d59920b1b0b808de9ab4228779d564c3a24926e21e713e15c061ff4d77659e1601c92f7a93ed9e7bf4843ee7df01d027908575

    • SSDEEP

      1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMTIM:TCjsIOtEvwDpj5HE/OUHnSMu

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks