Overview

overview

10

Static

static

10

2024-05-21...er.exe

windows7-x64

9

2024-05-21...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-05-21_6af5c1277e67b2e13c89fa4ad8446ece_cryptolocker

  • Size

    390KB

  • Sample

    240521-z7fwrsah22

  • MD5

    6af5c1277e67b2e13c89fa4ad8446ece

  • SHA1

    8e653114f59629fd134331779518ae1f9209a684

  • SHA256

    01fee360079600b5c19925f286cfcaca3f61e40b2d0d778197fd5006f8c7020d

  • SHA512

    4ff9bfbf460edb7200588bf850e2e4f72cbe3bb6350492da18d59ea6af7990cec0a9cb3697f8a62f7e38135190544ca1168cd57d341cfa42db17f1b62deba1b1

  • SSDEEP

    6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXR2:nnOflT/ZFIjBz3xjTxynGUOUhXR2

Score
10/10

Malware Config

Targets

    • Target

      2024-05-21_6af5c1277e67b2e13c89fa4ad8446ece_cryptolocker

    • Size

      390KB

    • MD5

      6af5c1277e67b2e13c89fa4ad8446ece

    • SHA1

      8e653114f59629fd134331779518ae1f9209a684

    • SHA256

      01fee360079600b5c19925f286cfcaca3f61e40b2d0d778197fd5006f8c7020d

    • SHA512

      4ff9bfbf460edb7200588bf850e2e4f72cbe3bb6350492da18d59ea6af7990cec0a9cb3697f8a62f7e38135190544ca1168cd57d341cfa42db17f1b62deba1b1

    • SSDEEP

      6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXR2:nnOflT/ZFIjBz3xjTxynGUOUhXR2

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks