Overview

overview

10

Static

static

10

2024-05-01...er.exe

windows7-x64

9

2024-05-01...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-01_ab873997456b5541484fa90fd8ea8548_cryptolocker

  • Size

    37KB

  • Sample

    240501-fsyngsah49

  • MD5

    ab873997456b5541484fa90fd8ea8548

  • SHA1

    3daa2337c4efa547d7771bca68e47970660a6554

  • SHA256

    a2053528d2e7544e9af4ade6857e24a8558c0b3a0b7ecec0131552a7d3dba3e3

  • SHA512

    08ab0a370008ddae6223f900924ba798ae00c121a08117d5c115db30a85ce7eaaf17710d16eaf7029d26f10b43cf632810c01b3274d71ed91ab7373c7b7efa69

  • SSDEEP

    768:wHGGaSawqnwjRQ6ESlmFOsPoOdQtOOtEvwDpjm6WaJIOc+UPPEkYl:YGzl5wjRQBBOsP1QMOtEvwDpjgarrkW

Score
10/10

Malware Config

Targets

    • Target

      2024-05-01_ab873997456b5541484fa90fd8ea8548_cryptolocker

    • Size

      37KB

    • MD5

      ab873997456b5541484fa90fd8ea8548

    • SHA1

      3daa2337c4efa547d7771bca68e47970660a6554

    • SHA256

      a2053528d2e7544e9af4ade6857e24a8558c0b3a0b7ecec0131552a7d3dba3e3

    • SHA512

      08ab0a370008ddae6223f900924ba798ae00c121a08117d5c115db30a85ce7eaaf17710d16eaf7029d26f10b43cf632810c01b3274d71ed91ab7373c7b7efa69

    • SSDEEP

      768:wHGGaSawqnwjRQ6ESlmFOsPoOdQtOOtEvwDpjm6WaJIOc+UPPEkYl:YGzl5wjRQBBOsP1QMOtEvwDpjgarrkW

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks