Overview

overview

10

Static

static

10

2024-04-26...er.exe

windows7-x64

9

2024-04-26...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-04-26_f142a3b170c18ae7d76aa163b0675704_cryptolocker

  • Size

    90KB

  • Sample

    240426-w72axsae8z

  • MD5

    f142a3b170c18ae7d76aa163b0675704

  • SHA1

    8206b4d9b75426643fac45961e2d7d41e56300a4

  • SHA256

    f54c1c1031812cb3fa0b0dca524737e01b012bd4e149bad8ef33edeb77aa74c2

  • SHA512

    87bbc816117218d4995714d217b323187807f1851482ad31411665b40138a713e8d4edb491fcd01ab63f67cf3a1e5735aefd03765d9a19db10f2bd12a61ef501

  • SSDEEP

    1536:vj+jsMQMOtEvwDpj5H8u8rBN6nqEZNi1OkQe:vCjsIOtEvwDpj5H8zPs8

Score
10/10

Malware Config

Targets

    • Target

      2024-04-26_f142a3b170c18ae7d76aa163b0675704_cryptolocker

    • Size

      90KB

    • MD5

      f142a3b170c18ae7d76aa163b0675704

    • SHA1

      8206b4d9b75426643fac45961e2d7d41e56300a4

    • SHA256

      f54c1c1031812cb3fa0b0dca524737e01b012bd4e149bad8ef33edeb77aa74c2

    • SHA512

      87bbc816117218d4995714d217b323187807f1851482ad31411665b40138a713e8d4edb491fcd01ab63f67cf3a1e5735aefd03765d9a19db10f2bd12a61ef501

    • SSDEEP

      1536:vj+jsMQMOtEvwDpj5H8u8rBN6nqEZNi1OkQe:vCjsIOtEvwDpj5H8zPs8

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks