Overview

overview

10

Static

static

10

2024-05-15...er.exe

windows7-x64

9

2024-05-15...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-05-15_fba38addadc8fc4a9805effddb4528eb_cryptolocker

  • Size

    43KB

  • Sample

    240515-y3hzwsaa4x

  • MD5

    fba38addadc8fc4a9805effddb4528eb

  • SHA1

    de6327ff3d23ba3772c19c2fa7cd9bd7f89a25f5

  • SHA256

    9f755016114beb7a43f91723cf6610e3b995cdf64b818749a53ab62555160c5f

  • SHA512

    3395ecc2d36eb53d5a2bab202b29f5504b83774ffbbb3fd20d4c0b13bb19b47e0622ffc2a8ff3512616217e254e36dbab86f907097017d4900d3e18af9d2058c

  • SSDEEP

    384:bm74uGLLQRcsdeQ72ngEr4K7YmE8jb0nrlwfjDUadQh:bm74zYcgT/EkM0ryfjPdQh

Score
10/10

Malware Config

Targets

    • Target

      2024-05-15_fba38addadc8fc4a9805effddb4528eb_cryptolocker

    • Size

      43KB

    • MD5

      fba38addadc8fc4a9805effddb4528eb

    • SHA1

      de6327ff3d23ba3772c19c2fa7cd9bd7f89a25f5

    • SHA256

      9f755016114beb7a43f91723cf6610e3b995cdf64b818749a53ab62555160c5f

    • SHA512

      3395ecc2d36eb53d5a2bab202b29f5504b83774ffbbb3fd20d4c0b13bb19b47e0622ffc2a8ff3512616217e254e36dbab86f907097017d4900d3e18af9d2058c

    • SSDEEP

      384:bm74uGLLQRcsdeQ72ngEr4K7YmE8jb0nrlwfjDUadQh:bm74zYcgT/EkM0ryfjPdQh

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks