Overview

overview

10

Static

static

10

2024-05-21...er.exe

windows7-x64

9

2024-05-21...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-05-21_757c99300f6ed4a23d0d0facd2087e95_cryptolocker

  • Size

    64KB

  • Sample

    240521-fmznlahh58

  • MD5

    757c99300f6ed4a23d0d0facd2087e95

  • SHA1

    bd7f5b9fa6934ce878bcd3365e0464b77f1154ce

  • SHA256

    c8766c8a983f3799590f86391ec043650cf1fd2e0ab80c28caebbe99f41e10d8

  • SHA512

    db1e807322adcc6e4075542f543c000905133976112e64f3b662ca0c439227e53ef931942a623b6647cc427d8af586dfc158a0978176f1a2c5e6b1fcfff5c062

  • SSDEEP

    1536:qmbhXDmjr5MOtEvwDpj5cDtKkQZQRKb61vSbgtsid:BbdDmjr+OtEvwDpjM8s

Score
10/10

Malware Config

Targets

    • Target

      2024-05-21_757c99300f6ed4a23d0d0facd2087e95_cryptolocker

    • Size

      64KB

    • MD5

      757c99300f6ed4a23d0d0facd2087e95

    • SHA1

      bd7f5b9fa6934ce878bcd3365e0464b77f1154ce

    • SHA256

      c8766c8a983f3799590f86391ec043650cf1fd2e0ab80c28caebbe99f41e10d8

    • SHA512

      db1e807322adcc6e4075542f543c000905133976112e64f3b662ca0c439227e53ef931942a623b6647cc427d8af586dfc158a0978176f1a2c5e6b1fcfff5c062

    • SSDEEP

      1536:qmbhXDmjr5MOtEvwDpj5cDtKkQZQRKb61vSbgtsid:BbdDmjr+OtEvwDpjM8s

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks