Overview

overview

10

Static

static

10

2024-05-14...er.exe

windows7-x64

9

2024-05-14...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-05-14_1f1a7590299777b1962e31d7dba1054a_cryptolocker

  • Size

    44KB

  • Sample

    240514-janmcafa91

  • MD5

    1f1a7590299777b1962e31d7dba1054a

  • SHA1

    5ae74957fbdd5e1d5c14365ba649c87db7303f60

  • SHA256

    8b9797bdcf50ea4dd3c6efcb5da44bcc2d68d803b350adbc0159dda9dc142709

  • SHA512

    5fdc726b0ed43e86803e2d8c393f1cbc9bbd30dc1ac428fc1e9d6558db61d3bc93386a12e72b1a5a035d40d9c65143699aa134fcbc53f37d9443380a454bd93c

  • SSDEEP

    768:b7o/2n1TCraU6GD1a4X0WcO+wMVm+slAMphqu:bc/y2lkF0+Bequ

Score
10/10

Malware Config

Targets

    • Target

      2024-05-14_1f1a7590299777b1962e31d7dba1054a_cryptolocker

    • Size

      44KB

    • MD5

      1f1a7590299777b1962e31d7dba1054a

    • SHA1

      5ae74957fbdd5e1d5c14365ba649c87db7303f60

    • SHA256

      8b9797bdcf50ea4dd3c6efcb5da44bcc2d68d803b350adbc0159dda9dc142709

    • SHA512

      5fdc726b0ed43e86803e2d8c393f1cbc9bbd30dc1ac428fc1e9d6558db61d3bc93386a12e72b1a5a035d40d9c65143699aa134fcbc53f37d9443380a454bd93c

    • SSDEEP

      768:b7o/2n1TCraU6GD1a4X0WcO+wMVm+slAMphqu:bc/y2lkF0+Bequ

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks