1ebee3af5bc15fd78fbd6a00b62993f5db5d2cc1482a2dd3a145860933f1f421 | Triage

Submit
Reports

Overview

overview

Static

static

1ebee3af5b...21.exe

windows7-x64

9

1ebee3af5b...21.exe

windows10-2004-x64

9

Sharing

General

Target

1ebee3af5bc15fd78fbd6a00b62993f5db5d2cc1482a2dd3a145860933f1f421
Size

49KB
Sample

240521-x7a96sgb2x
MD5

68ee11b64a3f832e83f04d644cd77b81
SHA1

456139bd374d48e6c34bbfb36bd95aba71798fc0
SHA256

1ebee3af5bc15fd78fbd6a00b62993f5db5d2cc1482a2dd3a145860933f1f421
SHA512

4940722b9755e4cd1ac49b6f6fa0647b8867af315298bd31dae41c2f88d4452fb052fb63196b55af39d7d5773a582fe52a1ed9b84eabf529eaa469eea02f13c0
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaaEqbIu55id3AMWZRQZ:X6QFElP6n+gJQMOtEvwDpjB0GIWiWLa

Score

10^/10

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

1ebee3af5bc15fd78fbd6a00b62993f5db5d2cc1482a2dd3a145860933f1f421.exe

Resource

win7-20240221-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

1ebee3af5bc15fd78fbd6a00b62993f5db5d2cc1482a2dd3a145860933f1f421.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  1ebee3af5bc15fd78fbd6a00b62993f5db5d2cc1482a2dd3a145860933f1f421
- Size
  
  49KB
- MD5
  
  68ee11b64a3f832e83f04d644cd77b81
- SHA1
  
  456139bd374d48e6c34bbfb36bd95aba71798fc0
- SHA256
  
  1ebee3af5bc15fd78fbd6a00b62993f5db5d2cc1482a2dd3a145860933f1f421
- SHA512
  
  4940722b9755e4cd1ac49b6f6fa0647b8867af315298bd31dae41c2f88d4452fb052fb63196b55af39d7d5773a582fe52a1ed9b84eabf529eaa469eea02f13c0
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaaEqbIu55id3AMWZRQZ:X6QFElP6n+gJQMOtEvwDpjB0GIWiWLa
Score

9^/10
- Detection of CryptoLocker Variants
- Detection of Cryptolocker Samples
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy