Overview

overview

10

Static

static

10

2024-04-17...er.exe

windows7-x64

9

2024-04-17...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-04-17_137326f3461beaa0156a899348a952ba_cryptolocker

  • Size

    69KB

  • Sample

    240417-vygz9ahh5x

  • MD5

    137326f3461beaa0156a899348a952ba

  • SHA1

    682c097677b29c9570ab1a077bb5a812c26508ba

  • SHA256

    13b7ac89baa47bc28bf30e9f2ba10cf7140810e5af24d9d0ce260fb13b68978c

  • SHA512

    647150ff25d5a86fa6b9737a1667a91b522f20fcd103ea904a789d544a239f4cee48cd216d6ccbccc5c4200ce57afdbe3eccbbf4f7986ff7963909c85b155db7

  • SSDEEP

    1536:Dk/xY0sllyGQMOtEvwDpjwycDtKkQZQRKb61vSbgZ3QzNKU50u:DW60sllyWOtEvwDpjwF855

Score
10/10

Malware Config

Targets

    • Target

      2024-04-17_137326f3461beaa0156a899348a952ba_cryptolocker

    • Size

      69KB

    • MD5

      137326f3461beaa0156a899348a952ba

    • SHA1

      682c097677b29c9570ab1a077bb5a812c26508ba

    • SHA256

      13b7ac89baa47bc28bf30e9f2ba10cf7140810e5af24d9d0ce260fb13b68978c

    • SHA512

      647150ff25d5a86fa6b9737a1667a91b522f20fcd103ea904a789d544a239f4cee48cd216d6ccbccc5c4200ce57afdbe3eccbbf4f7986ff7963909c85b155db7

    • SSDEEP

      1536:Dk/xY0sllyGQMOtEvwDpjwycDtKkQZQRKb61vSbgZ3QzNKU50u:DW60sllyWOtEvwDpjwF855

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks