Overview

overview

10

Static

static

10

2024-04-26...er.exe

windows7-x64

9

2024-04-26...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-04-26_24337a0d9580019f40e176bdf35aad84_cryptolocker

  • Size

    388KB

  • Sample

    240426-yr36paca3s

  • MD5

    24337a0d9580019f40e176bdf35aad84

  • SHA1

    6cbd707eced75de64729e52186db45e06ac4e2fb

  • SHA256

    b3aa01954c03b05f8e33fad65f629f0f93ac602d81b531326c70dc586b687a7d

  • SHA512

    adfa19292423c4130bafb4523ebc80a4ddd5a7e3cdb75274789a8458af4a8dce863785e7ecd6d52a10780524ee7d32328a4d13b01ef9871788535451ff367d0a

  • SSDEEP

    6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXM:nnOflT/ZFIjBz3xjTxynGUOUhXM

Score
10/10

Malware Config

Targets

    • Target

      2024-04-26_24337a0d9580019f40e176bdf35aad84_cryptolocker

    • Size

      388KB

    • MD5

      24337a0d9580019f40e176bdf35aad84

    • SHA1

      6cbd707eced75de64729e52186db45e06ac4e2fb

    • SHA256

      b3aa01954c03b05f8e33fad65f629f0f93ac602d81b531326c70dc586b687a7d

    • SHA512

      adfa19292423c4130bafb4523ebc80a4ddd5a7e3cdb75274789a8458af4a8dce863785e7ecd6d52a10780524ee7d32328a4d13b01ef9871788535451ff367d0a

    • SSDEEP

      6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXM:nnOflT/ZFIjBz3xjTxynGUOUhXM

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks