1025e9ddfcfa481a74ef693223304f1dd374776405a5f862b889318a1853129a | Triage

Submit
Reports

Overview

overview

Static

static

2024-04-25...er.exe

windows7-x64

9

2024-04-25...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

Target

2024-04-25_b1d135a466c3f04a5439404c3aa7d752_cryptolocker
Size

36KB
Sample

240425-rac5lsbd94
MD5

b1d135a466c3f04a5439404c3aa7d752
SHA1

10da7b22a3e1274992cb7d1a3ec7ab684bdc95bc
SHA256

1025e9ddfcfa481a74ef693223304f1dd374776405a5f862b889318a1853129a
SHA512

beda03e10724580a2982a2f68e68cdcd0113e032bb049721557450beff412409e58c2a71287108feae3cc8143f4ffcabd767b67d20f30a04b546b1844523d0ba
SSDEEP

384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzo6c3l8Sz960SPluhg:bAvJCYOOvbRPDEgXRc3SSz3SPx

Score

10^/10

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

2024-04-25_b1d135a466c3f04a5439404c3aa7d752_cryptolocker.exe

Resource

win7-20240221-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-04-25_b1d135a466c3f04a5439404c3aa7d752_cryptolocker.exe

Resource

win10v2004-20240412-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-04-25_b1d135a466c3f04a5439404c3aa7d752_cryptolocker
- Size
  
  36KB
- MD5
  
  b1d135a466c3f04a5439404c3aa7d752
- SHA1
  
  10da7b22a3e1274992cb7d1a3ec7ab684bdc95bc
- SHA256
  
  1025e9ddfcfa481a74ef693223304f1dd374776405a5f862b889318a1853129a
- SHA512
  
  beda03e10724580a2982a2f68e68cdcd0113e032bb049721557450beff412409e58c2a71287108feae3cc8143f4ffcabd767b67d20f30a04b546b1844523d0ba
- SSDEEP
  
  384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzo6c3l8Sz960SPluhg:bAvJCYOOvbRPDEgXRc3SSz3SPx
Score

9^/10
- Detection of CryptoLocker Variants
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy