Overview

overview

10

Static

static

10

2024-05-05...er.exe

windows7-x64

9

2024-05-05...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-05-05_c2e99f04a6765aee50da4a878e6a6aef_cryptolocker

  • Size

    61KB

  • Sample

    240505-tc9mpsec5s

  • MD5

    c2e99f04a6765aee50da4a878e6a6aef

  • SHA1

    8b6c6c1fa6d536e15df87293fe3b72b069511341

  • SHA256

    a28f778787712fd0033bb4adaa87d84f82b9891ef7f9608fc0b07323555ff6a4

  • SHA512

    60f2979cfd6222e15273b385222ecf2545ea5d82a86b5e2965f5edd156b69002655c053270dff59c8a96d5485bb7406317dd6d1c176bc1c92d7099560a9b8bfe

  • SSDEEP

    1536:X6QFElP6n+gJQMOtEvwDpjBccD2RuoNmuBLZ/xXca:X6a+SOtEvwDpjBrOJ

Score
10/10

Malware Config

Targets

    • Target

      2024-05-05_c2e99f04a6765aee50da4a878e6a6aef_cryptolocker

    • Size

      61KB

    • MD5

      c2e99f04a6765aee50da4a878e6a6aef

    • SHA1

      8b6c6c1fa6d536e15df87293fe3b72b069511341

    • SHA256

      a28f778787712fd0033bb4adaa87d84f82b9891ef7f9608fc0b07323555ff6a4

    • SHA512

      60f2979cfd6222e15273b385222ecf2545ea5d82a86b5e2965f5edd156b69002655c053270dff59c8a96d5485bb7406317dd6d1c176bc1c92d7099560a9b8bfe

    • SSDEEP

      1536:X6QFElP6n+gJQMOtEvwDpjBccD2RuoNmuBLZ/xXca:X6a+SOtEvwDpjBrOJ

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks