Overview

overview

10

Static

static

10

2024-04-21...er.exe

windows7-x64

9

2024-04-21...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-04-21_f31c59745594187e46db9c6d7e004bdf_cryptolocker

  • Size

    82KB

  • Sample

    240421-yh98msah71

  • MD5

    f31c59745594187e46db9c6d7e004bdf

  • SHA1

    803cb75d8778b4076d8bf520c71e877f0a195e1a

  • SHA256

    cbab7aee9a53f4b69cbe3ec2e2aa9fdc39faea7e13850a783f934df53cc9489f

  • SHA512

    d375ea7358f0750ab1bfe5885cc80c1de9c46be6b62d4d9117ccdc5c5465bfd07854c766b9ed4583f072003096c4ba09181910f2dbc91228a5274da61a79d0e1

  • SSDEEP

    1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMrht:TCjsIOtEvwDpj5HE/OUHnSMB

Score
10/10

Malware Config

Targets

    • Target

      2024-04-21_f31c59745594187e46db9c6d7e004bdf_cryptolocker

    • Size

      82KB

    • MD5

      f31c59745594187e46db9c6d7e004bdf

    • SHA1

      803cb75d8778b4076d8bf520c71e877f0a195e1a

    • SHA256

      cbab7aee9a53f4b69cbe3ec2e2aa9fdc39faea7e13850a783f934df53cc9489f

    • SHA512

      d375ea7358f0750ab1bfe5885cc80c1de9c46be6b62d4d9117ccdc5c5465bfd07854c766b9ed4583f072003096c4ba09181910f2dbc91228a5274da61a79d0e1

    • SSDEEP

      1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMrht:TCjsIOtEvwDpj5HE/OUHnSMB

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks