Overview

overview

10

Static

static

10

2024-05-21...er.exe

windows7-x64

9

2024-05-21...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-21_3dc5d8f08e9d1f4fb64b94e5a01b24b2_cryptolocker

  • Size

    62KB

  • Sample

    240521-s5hh9aaf86

  • MD5

    3dc5d8f08e9d1f4fb64b94e5a01b24b2

  • SHA1

    586388baa3f43c0d6d2b33b161056a478f0873c6

  • SHA256

    18a3b0ed094abc0bd6d5c7f0649e81f8a67594dd76ea9bd25f6e5087da9b9983

  • SHA512

    a71a9dfeaa3ff4dbbf7660982339564f9e12bba8e63174d348f8356a5d7b9a2681f36e69175aa335a607d48c7d9fd295fb11f958451aa0bc04b18947a200bc0a

  • SSDEEP

    768:3Uz7yVEhs9+Hs1SQtOOtEvwDpjO9+4hdCY8EQMjpi/Wpi3B3URiLqCyLuAx8XG9P:3P+HsMQMOtEvwDpjoHy7B3g9CWuAxWS

Score
10/10

Malware Config

Targets

    • Target

      2024-05-21_3dc5d8f08e9d1f4fb64b94e5a01b24b2_cryptolocker

    • Size

      62KB

    • MD5

      3dc5d8f08e9d1f4fb64b94e5a01b24b2

    • SHA1

      586388baa3f43c0d6d2b33b161056a478f0873c6

    • SHA256

      18a3b0ed094abc0bd6d5c7f0649e81f8a67594dd76ea9bd25f6e5087da9b9983

    • SHA512

      a71a9dfeaa3ff4dbbf7660982339564f9e12bba8e63174d348f8356a5d7b9a2681f36e69175aa335a607d48c7d9fd295fb11f958451aa0bc04b18947a200bc0a

    • SSDEEP

      768:3Uz7yVEhs9+Hs1SQtOOtEvwDpjO9+4hdCY8EQMjpi/Wpi3B3URiLqCyLuAx8XG9P:3P+HsMQMOtEvwDpjoHy7B3g9CWuAxWS

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

1
T1553

Install Root Certificate

1
T1553.004

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks