Overview

overview

10

Static

static

10

2024-05-12...er.exe

windows7-x64

9

2024-05-12...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-12_1a7ed25dae5e768ea5b0c27106786985_cryptolocker

  • Size

    85KB

  • Sample

    240512-e3mtasbf94

  • MD5

    1a7ed25dae5e768ea5b0c27106786985

  • SHA1

    3b374248835073b19116927a11e6a2f64883a163

  • SHA256

    1671ce45f03c83eb1d8d69d25d7b03b32b68abd0cddfa910dcca3483368a2fe0

  • SHA512

    e011a6ca872dc24c629b1b04cb6d2a436ddf44ed197276e5954e99ccb5fccc65cfb6383a02d46a6260526adae302208ef93f8ecc8e0234a6c5f29e9591f315ce

  • SSDEEP

    1536:V6QFElP6n+gMQMOtEvwDpjyaLccVNl6aP:V6a+pOtEvwDpjvpb

Score
10/10

Malware Config

Targets

    • Target

      2024-05-12_1a7ed25dae5e768ea5b0c27106786985_cryptolocker

    • Size

      85KB

    • MD5

      1a7ed25dae5e768ea5b0c27106786985

    • SHA1

      3b374248835073b19116927a11e6a2f64883a163

    • SHA256

      1671ce45f03c83eb1d8d69d25d7b03b32b68abd0cddfa910dcca3483368a2fe0

    • SHA512

      e011a6ca872dc24c629b1b04cb6d2a436ddf44ed197276e5954e99ccb5fccc65cfb6383a02d46a6260526adae302208ef93f8ecc8e0234a6c5f29e9591f315ce

    • SSDEEP

      1536:V6QFElP6n+gMQMOtEvwDpjyaLccVNl6aP:V6a+pOtEvwDpjvpb

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks