9583b3fdd5fe155c5b1e06eb7f7a28b4603d7fd5b9a4ede1bf640a54a88dcf6d | Triage

Submit
Reports

Overview

overview

Static

static

2024-05-22...er.exe

windows7-x64

9

2024-05-22...er.exe

windows10-2004-x64

9

Sharing

General

Target

2024-05-22_0a8b5af7919642d1b2ef3cc30b428c79_cryptolocker
Size

76KB
Sample

240522-3ch97ada22
MD5

0a8b5af7919642d1b2ef3cc30b428c79
SHA1

3b9a8f98f15dcc455f3eba1ede176d5ed5d3908f
SHA256

9583b3fdd5fe155c5b1e06eb7f7a28b4603d7fd5b9a4ede1bf640a54a88dcf6d
SHA512

0cc216fabed63492de48eedfcdc1c0400de9706393ecfd2b54a32e7910fb1e219fa21672673a12642111f6ceea551a4f3c27db21a262292669e3cdde4be03593
SSDEEP

1536:X6QFElP6n+gJQMOtEvwDpjBZYTjipvF2bx1rHsoLk2:X6a+SOtEvwDpjBZYvQd2F

Score

10^/10

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

2024-05-22_0a8b5af7919642d1b2ef3cc30b428c79_cryptolocker.exe

Resource

win7-20240221-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-05-22_0a8b5af7919642d1b2ef3cc30b428c79_cryptolocker.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-05-22_0a8b5af7919642d1b2ef3cc30b428c79_cryptolocker
- Size
  
  76KB
- MD5
  
  0a8b5af7919642d1b2ef3cc30b428c79
- SHA1
  
  3b9a8f98f15dcc455f3eba1ede176d5ed5d3908f
- SHA256
  
  9583b3fdd5fe155c5b1e06eb7f7a28b4603d7fd5b9a4ede1bf640a54a88dcf6d
- SHA512
  
  0cc216fabed63492de48eedfcdc1c0400de9706393ecfd2b54a32e7910fb1e219fa21672673a12642111f6ceea551a4f3c27db21a262292669e3cdde4be03593
- SSDEEP
  
  1536:X6QFElP6n+gJQMOtEvwDpjBZYTjipvF2bx1rHsoLk2:X6a+SOtEvwDpjBZYvQd2F
Score

9^/10
- Detection of CryptoLocker Variants
- Detection of Cryptolocker Samples
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy