Overview

overview

10

Static

static

10

2024-04-19...er.exe

windows7-x64

9

2024-04-19...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-19_00e534bc0c0a6a456d308d484c622f39_cryptolocker

  • Size

    65KB

  • Sample

    240419-pk1ybada4x

  • MD5

    00e534bc0c0a6a456d308d484c622f39

  • SHA1

    0657ed32a340a49fe4ef00bcc695eb4f0843bafc

  • SHA256

    85025c084bc36875d58216b7c7319d1ac3e293a686051eaed2dabe27c63700a9

  • SHA512

    61f2b67543856ef5c557488720b23bd773b9a7d90fe0dd17d4a33b042ba3d81729e75700bd842b1134bc7863a74d69b74d42737813e245fb5c6470045df30a87

  • SSDEEP

    1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2l9tMPvdfGyz:TCjsIOtEvwDpj5HE/OUHnSMYa

Score
10/10

Malware Config

Targets

    • Target

      2024-04-19_00e534bc0c0a6a456d308d484c622f39_cryptolocker

    • Size

      65KB

    • MD5

      00e534bc0c0a6a456d308d484c622f39

    • SHA1

      0657ed32a340a49fe4ef00bcc695eb4f0843bafc

    • SHA256

      85025c084bc36875d58216b7c7319d1ac3e293a686051eaed2dabe27c63700a9

    • SHA512

      61f2b67543856ef5c557488720b23bd773b9a7d90fe0dd17d4a33b042ba3d81729e75700bd842b1134bc7863a74d69b74d42737813e245fb5c6470045df30a87

    • SSDEEP

      1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2l9tMPvdfGyz:TCjsIOtEvwDpj5HE/OUHnSMYa

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks