Overview

overview

10

Static

static

10

2024-04-20...er.exe

windows7-x64

9

2024-04-20...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-04-20_04dbae0c273141a34f19361791c62168_cryptolocker

  • Size

    125KB

  • Sample

    240420-3cte6adb51

  • MD5

    04dbae0c273141a34f19361791c62168

  • SHA1

    f1bd40b9f6140953317b938fdd544538f741b65d

  • SHA256

    3810972d8b4eb65a2817be67cd4fdab083fa0ab6eda74e31b530c0e8048c8273

  • SHA512

    47f2d1382cbf460a66eeddb0c90a941422e9f014c3cc832ec13f56345e14b58c4023a866d9c4611f782162587341dbabafbea975810f8fb40224733bb6a422f6

  • SSDEEP

    1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfIuBKLUYOVbvh//va:vCjsIOtEvwDpj5H9YvQd2RI

Score
10/10

Malware Config

Targets

    • Target

      2024-04-20_04dbae0c273141a34f19361791c62168_cryptolocker

    • Size

      125KB

    • MD5

      04dbae0c273141a34f19361791c62168

    • SHA1

      f1bd40b9f6140953317b938fdd544538f741b65d

    • SHA256

      3810972d8b4eb65a2817be67cd4fdab083fa0ab6eda74e31b530c0e8048c8273

    • SHA512

      47f2d1382cbf460a66eeddb0c90a941422e9f014c3cc832ec13f56345e14b58c4023a866d9c4611f782162587341dbabafbea975810f8fb40224733bb6a422f6

    • SSDEEP

      1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfIuBKLUYOVbvh//va:vCjsIOtEvwDpj5H9YvQd2RI

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks