Overview

overview

10

Static

static

10

2024-04-16...er.exe

windows7-x64

9

2024-04-16...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-04-16_f863fd068894a410d1b1b1f297ea5014_cryptolocker

  • Size

    30KB

  • Sample

    240416-f6j29acd4w

  • MD5

    f863fd068894a410d1b1b1f297ea5014

  • SHA1

    9c94e5d1a0fba2867768070404d16c62b7b382b9

  • SHA256

    b89be000fb5e51abdb649508838a9272217c46d22f03d5033129c02e72389078

  • SHA512

    94b6eb90e7edaa57159246d803e49609ef83062730996f0d2a5f42aef3a88cb35cab5764397b69f1e68d8e69a03492537e2e6790e671d40dcabbc18cb001c812

  • SSDEEP

    384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTq:bG74zYcgT/Ekd0ryfjO

Score
10/10

Malware Config

Targets

    • Target

      2024-04-16_f863fd068894a410d1b1b1f297ea5014_cryptolocker

    • Size

      30KB

    • MD5

      f863fd068894a410d1b1b1f297ea5014

    • SHA1

      9c94e5d1a0fba2867768070404d16c62b7b382b9

    • SHA256

      b89be000fb5e51abdb649508838a9272217c46d22f03d5033129c02e72389078

    • SHA512

      94b6eb90e7edaa57159246d803e49609ef83062730996f0d2a5f42aef3a88cb35cab5764397b69f1e68d8e69a03492537e2e6790e671d40dcabbc18cb001c812

    • SSDEEP

      384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTq:bG74zYcgT/Ekd0ryfjO

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks