Overview

overview

10

Static

static

10

2024-04-17...er.exe

windows7-x64

9

2024-04-17...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-04-17_0a07695bb63b5101242a3d828eef3a24_cryptolocker

  • Size

    78KB

  • Sample

    240417-kaf3yabd2x

  • MD5

    0a07695bb63b5101242a3d828eef3a24

  • SHA1

    5b40e098b9fff7e28a30cc7dc7b478f0b6798667

  • SHA256

    ed1df1ab2c7cb1e962b046fe521f9b187f6eb59791e28043d29ddcea69116cf1

  • SHA512

    f4f6671b47b24382f2348d042d14c9fd80be70a23f668c390a9c01c3d608c8f2002482e43eb0e6d2a698d3410c0db19eda7c2d14fb66ded845cde79c1162ce45

  • SSDEEP

    1536:V6QFElP6n+gMQMOtEvwDpjyaLccVNlupv:V6a+pOtEvwDpjvpK

Score
10/10

Malware Config

Targets

    • Target

      2024-04-17_0a07695bb63b5101242a3d828eef3a24_cryptolocker

    • Size

      78KB

    • MD5

      0a07695bb63b5101242a3d828eef3a24

    • SHA1

      5b40e098b9fff7e28a30cc7dc7b478f0b6798667

    • SHA256

      ed1df1ab2c7cb1e962b046fe521f9b187f6eb59791e28043d29ddcea69116cf1

    • SHA512

      f4f6671b47b24382f2348d042d14c9fd80be70a23f668c390a9c01c3d608c8f2002482e43eb0e6d2a698d3410c0db19eda7c2d14fb66ded845cde79c1162ce45

    • SSDEEP

      1536:V6QFElP6n+gMQMOtEvwDpjyaLccVNlupv:V6a+pOtEvwDpjvpK

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks