Overview

overview

10

Static

static

10

2024-04-21...er.exe

windows7-x64

9

2024-04-21...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-04-21_1a27b4a1cb4d20738aefbfbd0e604346_cryptolocker

  • Size

    52KB

  • Sample

    240421-yhglbsah6w

  • MD5

    1a27b4a1cb4d20738aefbfbd0e604346

  • SHA1

    6e15c91503d9e1352916eb6282c0aa4c6a7caaa7

  • SHA256

    1094890b2a5b8622cb91334bb97fc0107082a9ce9326d3776b0c3a6950e45485

  • SHA512

    9ad4d823708c729cb8b6b002053e6c16b023ccba745a7e1e890855a11be82987e6c8764f084f328ecc1d6399ffdff5a35b659631067b1fd324229f5f88206192

  • SSDEEP

    768:bgX4zYcgTEu6QOaryfjqDlC6JFbK37Yl6dIKld5CS4Gjn:bgGYcA/53GAA6y37Q6dI+d5QGz

Score
10/10

Malware Config

Targets

    • Target

      2024-04-21_1a27b4a1cb4d20738aefbfbd0e604346_cryptolocker

    • Size

      52KB

    • MD5

      1a27b4a1cb4d20738aefbfbd0e604346

    • SHA1

      6e15c91503d9e1352916eb6282c0aa4c6a7caaa7

    • SHA256

      1094890b2a5b8622cb91334bb97fc0107082a9ce9326d3776b0c3a6950e45485

    • SHA512

      9ad4d823708c729cb8b6b002053e6c16b023ccba745a7e1e890855a11be82987e6c8764f084f328ecc1d6399ffdff5a35b659631067b1fd324229f5f88206192

    • SSDEEP

      768:bgX4zYcgTEu6QOaryfjqDlC6JFbK37Yl6dIKld5CS4Gjn:bgGYcA/53GAA6y37Q6dI+d5QGz

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks