Overview

overview

10

Static

static

10

2024-04-27...er.exe

windows7-x64

9

2024-04-27...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-04-27_641dbed814788b638a80c3559adea02b_cryptolocker

  • Size

    50KB

  • Sample

    240427-kmgv1aff4v

  • MD5

    641dbed814788b638a80c3559adea02b

  • SHA1

    0834786a404126912fe672bea51ed9e1fba50599

  • SHA256

    dbaa51be35c8b96d64996ff284c2ce2491909e888982f621bb0cb9d465e08e8e

  • SHA512

    681180c1422c0c7fe316ff5a05a67a5f29167d5b9aaaa1276ef882ff2a8841d03681e255e8018aa871c561684b33fd4624b58fdc4be88d0c2748add3ffdb2c3f

  • SSDEEP

    1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszsbKY1xzpAIx:aq7tdgI2MyzNORQtOflIwoHNV2XBFV7e

Score
10/10

Malware Config

Targets

    • Target

      2024-04-27_641dbed814788b638a80c3559adea02b_cryptolocker

    • Size

      50KB

    • MD5

      641dbed814788b638a80c3559adea02b

    • SHA1

      0834786a404126912fe672bea51ed9e1fba50599

    • SHA256

      dbaa51be35c8b96d64996ff284c2ce2491909e888982f621bb0cb9d465e08e8e

    • SHA512

      681180c1422c0c7fe316ff5a05a67a5f29167d5b9aaaa1276ef882ff2a8841d03681e255e8018aa871c561684b33fd4624b58fdc4be88d0c2748add3ffdb2c3f

    • SSDEEP

      1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszsbKY1xzpAIx:aq7tdgI2MyzNORQtOflIwoHNV2XBFV7e

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks