Overview

overview

10

Static

static

10

2024-04-16...er.exe

windows7-x64

9

2024-04-16...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-04-16_896206810ccda05d2c8ae6237e177042_cryptolocker

  • Size

    389KB

  • Sample

    240416-fk21yahh67

  • MD5

    896206810ccda05d2c8ae6237e177042

  • SHA1

    6439cca8739ecd767c03c4cfb39ded9742aa8e76

  • SHA256

    0ed3ff3ecca421b2f34ba66d6eef3ddefcb668d9cc7147248b9eaee4b4cf893d

  • SHA512

    af5616320cfa723084e4db004e9289774fb681fac55d30ae7a485272fc1e1883f0a34e7e443d7a6b922d159661022e3c7264a0e926060453d1278be9e195e670

  • SSDEEP

    6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXz:nnOflT/ZFIjBz3xjTxynGUOUhXz

Score
10/10

Malware Config

Targets

    • Target

      2024-04-16_896206810ccda05d2c8ae6237e177042_cryptolocker

    • Size

      389KB

    • MD5

      896206810ccda05d2c8ae6237e177042

    • SHA1

      6439cca8739ecd767c03c4cfb39ded9742aa8e76

    • SHA256

      0ed3ff3ecca421b2f34ba66d6eef3ddefcb668d9cc7147248b9eaee4b4cf893d

    • SHA512

      af5616320cfa723084e4db004e9289774fb681fac55d30ae7a485272fc1e1883f0a34e7e443d7a6b922d159661022e3c7264a0e926060453d1278be9e195e670

    • SSDEEP

      6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXz:nnOflT/ZFIjBz3xjTxynGUOUhXz

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks