Overview

overview

10

Static

static

10

2024-05-07...er.exe

windows7-x64

9

2024-05-07...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-05-07_2a0e072144ec73033ce0c087d7db28bd_cryptolocker

  • Size

    66KB

  • Sample

    240507-dzt8jaga51

  • MD5

    2a0e072144ec73033ce0c087d7db28bd

  • SHA1

    683e00859b70dd75b798d0d60814cb2b1406e07c

  • SHA256

    c36b4572af516281961dad6bf9adf32476ddf8371fa6ae84832a3c10440872f5

  • SHA512

    c21927d2ec3b7e5855a821c5e7cc82f9513b5638cc3c0b2f1543851010b6ee7fffac494c6592cb7afda636bdb64adf9b0638354f049b1777cb34536d4e21f154

  • SSDEEP

    1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2l9tMPvdfGye:TCjsIOtEvwDpj5HE/OUHnSMYR

Score
10/10

Malware Config

Targets

    • Target

      2024-05-07_2a0e072144ec73033ce0c087d7db28bd_cryptolocker

    • Size

      66KB

    • MD5

      2a0e072144ec73033ce0c087d7db28bd

    • SHA1

      683e00859b70dd75b798d0d60814cb2b1406e07c

    • SHA256

      c36b4572af516281961dad6bf9adf32476ddf8371fa6ae84832a3c10440872f5

    • SHA512

      c21927d2ec3b7e5855a821c5e7cc82f9513b5638cc3c0b2f1543851010b6ee7fffac494c6592cb7afda636bdb64adf9b0638354f049b1777cb34536d4e21f154

    • SSDEEP

      1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2l9tMPvdfGye:TCjsIOtEvwDpj5HE/OUHnSMYR

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks