Overview

overview

10

Static

static

10

2024-05-03...er.exe

windows7-x64

9

2024-05-03...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-05-03_1eaa7404dc6c4fcee790cc4558080005_cryptolocker

  • Size

    31KB

  • Sample

    240503-rbh29abh33

  • MD5

    1eaa7404dc6c4fcee790cc4558080005

  • SHA1

    4903fbb3cb8cbba9e4ee348c201a861f04c4cc9c

  • SHA256

    cdbb7d0cfd838abbb36d2240e302719d09ec2ca430e4ebdb36aac6fc68e15e37

  • SHA512

    fc02e0ee0a5abe7f90806463bf575801de9b923355d4708db315a82d364510ecd36dccb0f05a3dfb485f4d2de165e7b03c374f65c66f63759c0b1ea3b629c6e3

  • SSDEEP

    384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTG7E:bG74zYcgT/Ekd0ryfjJ

Score
10/10

Malware Config

Targets

    • Target

      2024-05-03_1eaa7404dc6c4fcee790cc4558080005_cryptolocker

    • Size

      31KB

    • MD5

      1eaa7404dc6c4fcee790cc4558080005

    • SHA1

      4903fbb3cb8cbba9e4ee348c201a861f04c4cc9c

    • SHA256

      cdbb7d0cfd838abbb36d2240e302719d09ec2ca430e4ebdb36aac6fc68e15e37

    • SHA512

      fc02e0ee0a5abe7f90806463bf575801de9b923355d4708db315a82d364510ecd36dccb0f05a3dfb485f4d2de165e7b03c374f65c66f63759c0b1ea3b629c6e3

    • SSDEEP

      384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTG7E:bG74zYcgT/Ekd0ryfjJ

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks