Overview

overview

10

Static

static

10

2024-04-08...er.exe

windows7-x64

9

2024-04-08...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-08_289fe38fe5ed516c0857f7c70411b9d2_cryptolocker

  • Size

    32KB

  • Sample

    240408-3cyd4seh38

  • MD5

    289fe38fe5ed516c0857f7c70411b9d2

  • SHA1

    f4d463989767f1468d127d3d80625d6c8940a6a6

  • SHA256

    ea1bda93dffffb08941758356e072f14089c9ef85164f704cc40eb9e3e7014ea

  • SHA512

    d37dd5205d757aa0e8db2d8066d8f7466bba03baacfaac3e057c65319e71335a1c5fd5f902fd31273961750ac5d5aa426e64f1b9b44a9f12a31c97e0d946c8bd

  • SSDEEP

    384:bmM0V/YPvnr801TRoUGPh4TKt6ATt1DqgPa3s/zzoCt9/Bw:b7o/2n1TCraU6GD1a4Xt9q

Score
10/10

Malware Config

Targets

    • Target

      2024-04-08_289fe38fe5ed516c0857f7c70411b9d2_cryptolocker

    • Size

      32KB

    • MD5

      289fe38fe5ed516c0857f7c70411b9d2

    • SHA1

      f4d463989767f1468d127d3d80625d6c8940a6a6

    • SHA256

      ea1bda93dffffb08941758356e072f14089c9ef85164f704cc40eb9e3e7014ea

    • SHA512

      d37dd5205d757aa0e8db2d8066d8f7466bba03baacfaac3e057c65319e71335a1c5fd5f902fd31273961750ac5d5aa426e64f1b9b44a9f12a31c97e0d946c8bd

    • SSDEEP

      384:bmM0V/YPvnr801TRoUGPh4TKt6ATt1DqgPa3s/zzoCt9/Bw:b7o/2n1TCraU6GD1a4Xt9q

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks