Overview

overview

10

Static

static

10

2024-04-24...er.exe

windows7-x64

9

2024-04-24...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-24_ec500ea3a51067e82cb7380f78835f6e_cryptolocker

  • Size

    36KB

  • Sample

    240424-bfb7hadd4w

  • MD5

    ec500ea3a51067e82cb7380f78835f6e

  • SHA1

    be54e0f39d6555f53a321c204def2330010d0980

  • SHA256

    194ba698484df1809523d73aa1f2bde8a46713bf8664b853c71dd29eec5366cc

  • SHA512

    ea5fa7d4639a71c3c37288015b0e6be4a60582e59e14f4b44c76b101f02e5b1536da319c8073512bc5f86df63995154ebe32475e96a8196e9cc6cc4c35b2fa76

  • SSDEEP

    768:fTz7y3lhsT+hs1SQtOOtEvwDpjfAu9+40W:fT+hsMQMOtEvwDpjoIH5

Score
10/10

Malware Config

Targets

    • Target

      2024-04-24_ec500ea3a51067e82cb7380f78835f6e_cryptolocker

    • Size

      36KB

    • MD5

      ec500ea3a51067e82cb7380f78835f6e

    • SHA1

      be54e0f39d6555f53a321c204def2330010d0980

    • SHA256

      194ba698484df1809523d73aa1f2bde8a46713bf8664b853c71dd29eec5366cc

    • SHA512

      ea5fa7d4639a71c3c37288015b0e6be4a60582e59e14f4b44c76b101f02e5b1536da319c8073512bc5f86df63995154ebe32475e96a8196e9cc6cc4c35b2fa76

    • SSDEEP

      768:fTz7y3lhsT+hs1SQtOOtEvwDpjfAu9+40W:fT+hsMQMOtEvwDpjoIH5

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks