Overview

overview

10

Static

static

10

2024-05-22...er.exe

windows7-x64

9

2024-05-22...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-22_d959b0da16c0a66caa2ab5e0437792ba_cryptolocker

  • Size

    48KB

  • Sample

    240522-1mnasahh71

  • MD5

    d959b0da16c0a66caa2ab5e0437792ba

  • SHA1

    1ef431b36ddca16f1cc76d88d3be48bc0b9ecb1d

  • SHA256

    31a3b7f38a242a44673bfe21f519494f726a8f308d109ef6ce1938f97536dea2

  • SHA512

    1f75b321d98d6324bd08eac71cc515e44c8287d5274600910d872319b6efc0fa206bbfac37a36524eea8ee16f3e3334bf93016490e30f3314ad45058e51a4d97

  • SSDEEP

    768:P6LsoVEeegiZPvEhHSP+gp/QtOOtEvwDpjBBMLZdzuqpXsiE8Wq/Dpkcg:P6Q0ElP6G+gJQMOtEvwDpjB8WMlfg

Score
10/10

Malware Config

Targets

    • Target

      2024-05-22_d959b0da16c0a66caa2ab5e0437792ba_cryptolocker

    • Size

      48KB

    • MD5

      d959b0da16c0a66caa2ab5e0437792ba

    • SHA1

      1ef431b36ddca16f1cc76d88d3be48bc0b9ecb1d

    • SHA256

      31a3b7f38a242a44673bfe21f519494f726a8f308d109ef6ce1938f97536dea2

    • SHA512

      1f75b321d98d6324bd08eac71cc515e44c8287d5274600910d872319b6efc0fa206bbfac37a36524eea8ee16f3e3334bf93016490e30f3314ad45058e51a4d97

    • SSDEEP

      768:P6LsoVEeegiZPvEhHSP+gp/QtOOtEvwDpjBBMLZdzuqpXsiE8Wq/Dpkcg:P6Q0ElP6G+gJQMOtEvwDpjB8WMlfg

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks