Overview

overview

10

Static

static

10

2024-04-10...er.exe

windows7-x64

9

2024-04-10...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-10_a91c515633e4c39724730368f0132f68_cryptolocker

  • Size

    50KB

  • Sample

    240410-ecm2dacg99

  • MD5

    a91c515633e4c39724730368f0132f68

  • SHA1

    aa4b974cdbc22a47290b3123a978be58ef3842f5

  • SHA256

    c321d61c3b58b29cb33b76e6a60f61bcb04995c6daf55143d7c6eeddffab24be

  • SHA512

    c71f1a2fb3f9d0f98735e13fd1c489ff719287349fc00b85e59d6c52b25deaabd94645a7be7af88a13d57f1bfc38b333343c4de0e038ac3e1a92d5552ed129cd

  • SSDEEP

    1536:V6QFElP6n+gMQMOtEvwDpjeJQ7pojkRaB:V6a+pOtEvwDpj4

Score
10/10

Malware Config

Targets

    • Target

      2024-04-10_a91c515633e4c39724730368f0132f68_cryptolocker

    • Size

      50KB

    • MD5

      a91c515633e4c39724730368f0132f68

    • SHA1

      aa4b974cdbc22a47290b3123a978be58ef3842f5

    • SHA256

      c321d61c3b58b29cb33b76e6a60f61bcb04995c6daf55143d7c6eeddffab24be

    • SHA512

      c71f1a2fb3f9d0f98735e13fd1c489ff719287349fc00b85e59d6c52b25deaabd94645a7be7af88a13d57f1bfc38b333343c4de0e038ac3e1a92d5552ed129cd

    • SSDEEP

      1536:V6QFElP6n+gMQMOtEvwDpjeJQ7pojkRaB:V6a+pOtEvwDpj4

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks