Overview

overview

10

Static

static

10

2024-04-26...er.exe

windows7-x64

9

2024-04-26...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-26_d1fdbf77257065578e7ad01294b55392_cryptolocker

  • Size

    85KB

  • Sample

    240426-3gnepsfb8t

  • MD5

    d1fdbf77257065578e7ad01294b55392

  • SHA1

    ff27d56b600945b50a52f63f5cbd4b924f035eff

  • SHA256

    1fbc7b57c4b9f1ae614895cbc6e124c8e5c718d150e9a44c33ae7a2e6429c1ed

  • SHA512

    4899ff60eb66bfbd5e562e3e7ef308557285be27000e53428e7f2f65bdfa92e21c49f0774f8658a3fa88e88627c9dbd44dabaa7bf81d19ccaf812ae579089be6

  • SSDEEP

    768:V6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpj/MLa5VccPtNw5CS95yFPnYcU:V6QFElP6n+gMQMOtEvwDpjyaLccVNl6X

Score
10/10

Malware Config

Targets

    • Target

      2024-04-26_d1fdbf77257065578e7ad01294b55392_cryptolocker

    • Size

      85KB

    • MD5

      d1fdbf77257065578e7ad01294b55392

    • SHA1

      ff27d56b600945b50a52f63f5cbd4b924f035eff

    • SHA256

      1fbc7b57c4b9f1ae614895cbc6e124c8e5c718d150e9a44c33ae7a2e6429c1ed

    • SHA512

      4899ff60eb66bfbd5e562e3e7ef308557285be27000e53428e7f2f65bdfa92e21c49f0774f8658a3fa88e88627c9dbd44dabaa7bf81d19ccaf812ae579089be6

    • SSDEEP

      768:V6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpj/MLa5VccPtNw5CS95yFPnYcU:V6QFElP6n+gMQMOtEvwDpjyaLccVNl6X

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks