Overview

overview

10

Static

static

10

2024-04-28...er.exe

windows7-x64

9

2024-04-28...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-04-28_ac14ad06a178c7727f35b867ab5804a1_cryptolocker

  • Size

    38KB

  • Sample

    240428-t5pg8scb71

  • MD5

    ac14ad06a178c7727f35b867ab5804a1

  • SHA1

    bdc57e3e6855a4cdef2afc2eeeef6dbfe357bd13

  • SHA256

    50e4de40d5677e3f7dc61b351214b51c0a955ede38a7931e6efd8f5390edb2c5

  • SHA512

    f8a353c9d84958962f252eb660a6410676a96b9a2398d11978c081ab536febde6d308922904f2a03ec6a2c4bed6a6b63db17d0dfdfab1a22d556504195357d94

  • SSDEEP

    384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNiJXxXunRSyHmYvV8L:btB9g/WItCSsAGjX7e9N0hunRvGIV8L

Score
10/10

Malware Config

Targets

    • Target

      2024-04-28_ac14ad06a178c7727f35b867ab5804a1_cryptolocker

    • Size

      38KB

    • MD5

      ac14ad06a178c7727f35b867ab5804a1

    • SHA1

      bdc57e3e6855a4cdef2afc2eeeef6dbfe357bd13

    • SHA256

      50e4de40d5677e3f7dc61b351214b51c0a955ede38a7931e6efd8f5390edb2c5

    • SHA512

      f8a353c9d84958962f252eb660a6410676a96b9a2398d11978c081ab536febde6d308922904f2a03ec6a2c4bed6a6b63db17d0dfdfab1a22d556504195357d94

    • SSDEEP

      384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNiJXxXunRSyHmYvV8L:btB9g/WItCSsAGjX7e9N0hunRvGIV8L

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks