224db769c7dcba48ca4f0999f4a44e8e43d5a123c3c15ef683da1ae53d67b37b | Triage

Submit
Reports

Overview

overview

Static

static

2024-05-09...er.exe

windows7-x64

9

2024-05-09...er.exe

windows10-2004-x64

9

Sharing

General

Target

2024-05-09_168d562e1b81ab73d9bb2f5f03c190d5_cryptolocker
Size

64KB
Sample

240509-3df68ada2s
MD5

168d562e1b81ab73d9bb2f5f03c190d5
SHA1

d43a5242dd976abd613655d11dd1ef26f459f15d
SHA256

224db769c7dcba48ca4f0999f4a44e8e43d5a123c3c15ef683da1ae53d67b37b
SHA512

e03e4ba5cdbf4b13ef551ed8a291680ec9a0c5c66ef15e50634bc2fe3eb8b9df39a996a7a532db9d594bbf3fca5eba618c1fc956cf5240ca5275e56e10d0fd48
SSDEEP

1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszudnYTjipvF293CiVm:aq7tdgI2MyzNORQtOflIwoHNV2XBFV72

Score

10^/10

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

2024-05-09_168d562e1b81ab73d9bb2f5f03c190d5_cryptolocker.exe

Resource

win7-20240221-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-05-09_168d562e1b81ab73d9bb2f5f03c190d5_cryptolocker.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-05-09_168d562e1b81ab73d9bb2f5f03c190d5_cryptolocker
- Size
  
  64KB
- MD5
  
  168d562e1b81ab73d9bb2f5f03c190d5
- SHA1
  
  d43a5242dd976abd613655d11dd1ef26f459f15d
- SHA256
  
  224db769c7dcba48ca4f0999f4a44e8e43d5a123c3c15ef683da1ae53d67b37b
- SHA512
  
  e03e4ba5cdbf4b13ef551ed8a291680ec9a0c5c66ef15e50634bc2fe3eb8b9df39a996a7a532db9d594bbf3fca5eba618c1fc956cf5240ca5275e56e10d0fd48
- SSDEEP
  
  1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszudnYTjipvF293CiVm:aq7tdgI2MyzNORQtOflIwoHNV2XBFV72
Score

9^/10
- Detection of CryptoLocker Variants
- Detection of Cryptolocker Samples
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy