Overview

overview

10

Static

static

10

2024-04-18...er.exe

windows7-x64

9

2024-04-18...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-18_6926454de1817d8e32a9753f2b27ed12_cryptolocker

  • Size

    389KB

  • Sample

    240418-y2n5hsdg49

  • MD5

    6926454de1817d8e32a9753f2b27ed12

  • SHA1

    2f054b2ebc03b7a23a1b415116c7ee7077380d06

  • SHA256

    4ce612054209b876774d9ca379c1284e62eeb1284ec369f138ebd702af197387

  • SHA512

    eda5f4fc2fb2fb50f3de645905f5ff08f89e2d5d1b8495016a73791be269af281f44ea9e38825f8010fc54b3eea727adc2f6f04080c3810d714d6c3b8e9470ba

  • SSDEEP

    6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXn:nnOflT/ZFIjBz3xjTxynGUOUhXn

Score
10/10

Malware Config

Targets

    • Target

      2024-04-18_6926454de1817d8e32a9753f2b27ed12_cryptolocker

    • Size

      389KB

    • MD5

      6926454de1817d8e32a9753f2b27ed12

    • SHA1

      2f054b2ebc03b7a23a1b415116c7ee7077380d06

    • SHA256

      4ce612054209b876774d9ca379c1284e62eeb1284ec369f138ebd702af197387

    • SHA512

      eda5f4fc2fb2fb50f3de645905f5ff08f89e2d5d1b8495016a73791be269af281f44ea9e38825f8010fc54b3eea727adc2f6f04080c3810d714d6c3b8e9470ba

    • SSDEEP

      6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXn:nnOflT/ZFIjBz3xjTxynGUOUhXn

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks