Overview

overview

10

Static

static

10

2024-04-28...er.exe

windows7-x64

9

2024-04-28...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-04-28_0a4855acc99c5a5afb36d961e1d0c815_cryptolocker

  • Size

    43KB

  • Sample

    240428-rqn7taaa5x

  • MD5

    0a4855acc99c5a5afb36d961e1d0c815

  • SHA1

    6acc7c2264bdd78d73ce539c0de7b48e53557525

  • SHA256

    65356744be7a228041784cfa1e0b1bea160dcc5081abbe5a1b861e8acd240709

  • SHA512

    da60cdd4a7bce2523bad0ca008d304403f6916cb2e7ebda5e76b3f745fa7268b988d19b240363519115d825e6415967c103196ddad0db8186a0f9f4cd3f642cc

  • SSDEEP

    768:b7o/2n1TCraU6GD1a4X0WcO+wMVm+slAMphqj:bc/y2lkF0+Beqj

Score
10/10

Malware Config

Targets

    • Target

      2024-04-28_0a4855acc99c5a5afb36d961e1d0c815_cryptolocker

    • Size

      43KB

    • MD5

      0a4855acc99c5a5afb36d961e1d0c815

    • SHA1

      6acc7c2264bdd78d73ce539c0de7b48e53557525

    • SHA256

      65356744be7a228041784cfa1e0b1bea160dcc5081abbe5a1b861e8acd240709

    • SHA512

      da60cdd4a7bce2523bad0ca008d304403f6916cb2e7ebda5e76b3f745fa7268b988d19b240363519115d825e6415967c103196ddad0db8186a0f9f4cd3f642cc

    • SSDEEP

      768:b7o/2n1TCraU6GD1a4X0WcO+wMVm+slAMphqj:bc/y2lkF0+Beqj

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks