81b61fb08d8fa7ef652b93177622166496505cf30d37262251eb17f8f2f8b305 | Triage

Submit
Reports

Overview

overview

Static

static

2024-04-23...er.exe

windows7-x64

9

2024-04-23...er.exe

windows10-2004-x64

9

Sharing

General

Target

2024-04-23_905a6d13111bb00a8a7ce93ee53738f0_cryptolocker
Size

40KB
Sample

240423-az78lsac44
MD5

905a6d13111bb00a8a7ce93ee53738f0
SHA1

f5c9114625291f444c99cb7932445331c2015bfb
SHA256

81b61fb08d8fa7ef652b93177622166496505cf30d37262251eb17f8f2f8b305
SHA512

db5002e28c551baf7bb6f0efa9b18287f0d8a0af2b3e500a482128562c50fe907fbf282eeb79b41a6b66097949d96e09950d3c05dd1a9e3ac1f8f4df8ca5bd19
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaac4HKcfr1:X6QFElP6n+gJQMOtEvwDpjBsYK6r1

Score

10^/10

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

2024-04-23_905a6d13111bb00a8a7ce93ee53738f0_cryptolocker.exe

Resource

win7-20240221-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-04-23_905a6d13111bb00a8a7ce93ee53738f0_cryptolocker.exe

Resource

win10v2004-20240412-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-04-23_905a6d13111bb00a8a7ce93ee53738f0_cryptolocker
- Size
  
  40KB
- MD5
  
  905a6d13111bb00a8a7ce93ee53738f0
- SHA1
  
  f5c9114625291f444c99cb7932445331c2015bfb
- SHA256
  
  81b61fb08d8fa7ef652b93177622166496505cf30d37262251eb17f8f2f8b305
- SHA512
  
  db5002e28c551baf7bb6f0efa9b18287f0d8a0af2b3e500a482128562c50fe907fbf282eeb79b41a6b66097949d96e09950d3c05dd1a9e3ac1f8f4df8ca5bd19
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaac4HKcfr1:X6QFElP6n+gJQMOtEvwDpjBsYK6r1
Score

9^/10
- Detection of CryptoLocker Variants
- Detection of Cryptolocker Samples
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy