Overview

overview

10

Static

static

10

2024-05-22...er.exe

windows7-x64

9

2024-05-22...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-22_704f3898b15f5fd082547d5463d30956_cryptolocker

  • Size

    44KB

  • Sample

    240522-c4zs5shf76

  • MD5

    704f3898b15f5fd082547d5463d30956

  • SHA1

    5be1cc9361dd32b2ba4fefcd80d0c90993777437

  • SHA256

    332a9f9e03fc8bcd5b0fff937505097b5e19974c326424dad7a27e0090976541

  • SHA512

    72fc74a989a1b9512cb59efb011fba93e95257ef08c9f2cab3d78af7f396ab5e2e4b5edb9c23396b3dd3cfa18faaf835ae9b396ad0d5d88fae779b550b1186b1

  • SSDEEP

    768:b/yC4GyNM01GuQMNXw2PSjHPbSuYlW8PA4DwOoJ8:b/pYayGig5HjS3NPAuwfO

Score
10/10

Malware Config

Targets

    • Target

      2024-05-22_704f3898b15f5fd082547d5463d30956_cryptolocker

    • Size

      44KB

    • MD5

      704f3898b15f5fd082547d5463d30956

    • SHA1

      5be1cc9361dd32b2ba4fefcd80d0c90993777437

    • SHA256

      332a9f9e03fc8bcd5b0fff937505097b5e19974c326424dad7a27e0090976541

    • SHA512

      72fc74a989a1b9512cb59efb011fba93e95257ef08c9f2cab3d78af7f396ab5e2e4b5edb9c23396b3dd3cfa18faaf835ae9b396ad0d5d88fae779b550b1186b1

    • SSDEEP

      768:b/yC4GyNM01GuQMNXw2PSjHPbSuYlW8PA4DwOoJ8:b/pYayGig5HjS3NPAuwfO

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks