Overview

overview

10

Static

static

10

2024-05-05...er.exe

windows7-x64

9

2024-05-05...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-05-05_7875f3acce80844726616d46120bad95_cryptolocker

  • Size

    38KB

  • Sample

    240505-sys2eaha59

  • MD5

    7875f3acce80844726616d46120bad95

  • SHA1

    734d768187b122895597eba7b9d193cfd9f083b3

  • SHA256

    d9afb2bd7c6a24acd85200e8b31b7744c1cea256851f99dcedc67e1afdbfe0e2

  • SHA512

    303b5ad6d5495e912d3dbea3fecc4db96cffd806638715210670b3a0db8769bcad4c7b40e2182edf0863be7891eb8ac94186817d2b002a8679b137af27c535ee

  • SSDEEP

    384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNiJXxXunRSyHmYvV8j:btB9g/WItCSsAGjX7e9N0hunRvGIV8j

Score
10/10

Malware Config

Targets

    • Target

      2024-05-05_7875f3acce80844726616d46120bad95_cryptolocker

    • Size

      38KB

    • MD5

      7875f3acce80844726616d46120bad95

    • SHA1

      734d768187b122895597eba7b9d193cfd9f083b3

    • SHA256

      d9afb2bd7c6a24acd85200e8b31b7744c1cea256851f99dcedc67e1afdbfe0e2

    • SHA512

      303b5ad6d5495e912d3dbea3fecc4db96cffd806638715210670b3a0db8769bcad4c7b40e2182edf0863be7891eb8ac94186817d2b002a8679b137af27c535ee

    • SSDEEP

      384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNiJXxXunRSyHmYvV8j:btB9g/WItCSsAGjX7e9N0hunRvGIV8j

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks