Overview

overview

10

Static

static

10

2024-04-17...er.exe

windows7-x64

9

2024-04-17...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-17_526a67c417e9d42022059175319b6376_cryptolocker

  • Size

    75KB

  • Sample

    240417-d8y8vaec3v

  • MD5

    526a67c417e9d42022059175319b6376

  • SHA1

    d6522631a7836c8764e32c40555052327b146b19

  • SHA256

    11da47733f8322ca55535ef489007d8be1cc51cbffa9572d4b51493595d7ccee

  • SHA512

    8c9351d0fd6d8ea7389069d777799e1ba2706d1261be46bf5d10290a2c890273e645acacca07eff2379f2e5006f9c3e80ed0ae82806a2051111f5ce7d5b2d24b

  • SSDEEP

    1536:X6QFElP6n+gJQMOtEvwDpjBZYTjipvF2bx1siMOV:X6a+SOtEvwDpjBZYvQd2b

Score
10/10

Malware Config

Targets

    • Target

      2024-04-17_526a67c417e9d42022059175319b6376_cryptolocker

    • Size

      75KB

    • MD5

      526a67c417e9d42022059175319b6376

    • SHA1

      d6522631a7836c8764e32c40555052327b146b19

    • SHA256

      11da47733f8322ca55535ef489007d8be1cc51cbffa9572d4b51493595d7ccee

    • SHA512

      8c9351d0fd6d8ea7389069d777799e1ba2706d1261be46bf5d10290a2c890273e645acacca07eff2379f2e5006f9c3e80ed0ae82806a2051111f5ce7d5b2d24b

    • SSDEEP

      1536:X6QFElP6n+gJQMOtEvwDpjBZYTjipvF2bx1siMOV:X6a+SOtEvwDpjBZYvQd2b

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks