Overview

overview

10

Static

static

10

2024-04-11...er.exe

windows7-x64

9

2024-04-11...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-11_9da5efaef5755a4678e1767a0e0e45e7_cryptolocker

  • Size

    388KB

  • Sample

    240411-kq9p7abb61

  • MD5

    9da5efaef5755a4678e1767a0e0e45e7

  • SHA1

    158f130a7b006858e6735bb3ad86483a265c2c18

  • SHA256

    41d754c1a42f043fd817d6e51736bbf8a3ebc76376f2025f8f81a4b6f84fbf66

  • SHA512

    7ab5db35f2f52592744dea89368adadffed604ab67d2a650f77fb9c762b38d1342c6fcccde654f6d261a7db202fedbd324063d10c0c3228973c2853957db95ea

  • SSDEEP

    6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXa:nnOflT/ZFIjBz3xjTxynGUOUhXa

Score
10/10

Malware Config

Targets

    • Target

      2024-04-11_9da5efaef5755a4678e1767a0e0e45e7_cryptolocker

    • Size

      388KB

    • MD5

      9da5efaef5755a4678e1767a0e0e45e7

    • SHA1

      158f130a7b006858e6735bb3ad86483a265c2c18

    • SHA256

      41d754c1a42f043fd817d6e51736bbf8a3ebc76376f2025f8f81a4b6f84fbf66

    • SHA512

      7ab5db35f2f52592744dea89368adadffed604ab67d2a650f77fb9c762b38d1342c6fcccde654f6d261a7db202fedbd324063d10c0c3228973c2853957db95ea

    • SSDEEP

      6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXa:nnOflT/ZFIjBz3xjTxynGUOUhXa

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks