Overview

overview

10

Static

static

10

2024-04-27...er.exe

windows7-x64

9

2024-04-27...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-27_638f4cb3f54e9189db0e4a63a8ec76c5_cryptolocker

  • Size

    85KB

  • Sample

    240427-2gjwvaad3x

  • MD5

    638f4cb3f54e9189db0e4a63a8ec76c5

  • SHA1

    cc1fa3211e0d946ee93c2bfa60c56209e751f551

  • SHA256

    d309c66f74e56e6c98ac0b2f105f1ab47f26d2b3a72348682ca09f8fea31d501

  • SHA512

    b70dd307712c2f41c9cf0bf8eb7846cf6ddb9d970c9cb2d5340ef44720c8b3332783f8d7b1ee04495e88123b88524103ebfdb0a714267c196695b6429eb29e78

  • SSDEEP

    1536:V6QFElP6n+gMQMOtEvwDpjyaLccVNl6ax:V6a+pOtEvwDpjvpl

Score
10/10

Malware Config

Targets

    • Target

      2024-04-27_638f4cb3f54e9189db0e4a63a8ec76c5_cryptolocker

    • Size

      85KB

    • MD5

      638f4cb3f54e9189db0e4a63a8ec76c5

    • SHA1

      cc1fa3211e0d946ee93c2bfa60c56209e751f551

    • SHA256

      d309c66f74e56e6c98ac0b2f105f1ab47f26d2b3a72348682ca09f8fea31d501

    • SHA512

      b70dd307712c2f41c9cf0bf8eb7846cf6ddb9d970c9cb2d5340ef44720c8b3332783f8d7b1ee04495e88123b88524103ebfdb0a714267c196695b6429eb29e78

    • SSDEEP

      1536:V6QFElP6n+gMQMOtEvwDpjyaLccVNl6ax:V6a+pOtEvwDpjvpl

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks