db5eb4c4c39d21f4cbb4fd81a6b1a83149711d47e959433160b709b43575163e | Triage

Submit
Reports

Overview

overview

Static

static

2024-05-22...er.exe

windows7-x64

9

2024-05-22...er.exe

windows10-2004-x64

9

Sharing

General

Target

2024-05-22_9a6000133533848edf99ad2eb927d1a4_cryptolocker
Size

59KB
Sample

240522-c7ex5shg56
MD5

9a6000133533848edf99ad2eb927d1a4
SHA1

736a6e2fda031691b56521fbab0db9f85d691c94
SHA256

db5eb4c4c39d21f4cbb4fd81a6b1a83149711d47e959433160b709b43575163e
SHA512

433c3e11204ff5ebcf2f671c4b9aa83657ad70ba8cebedcd31837c4c7ff85fcbbe3c9ef2db144576456d721e02d0ad6b8ac59243b0a9ea079c24c623d0f58e90
SSDEEP

768:3Uz7yVEhs9+Hs1SQtOOtEvwDpjO9+4hdCY8EQMjpi/Wpi3B3URiLqCyLuAx8XGJ0:3P+HsMQMOtEvwDpjoHy7B3g9CWuAxWG0

Score

10^/10

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

2024-05-22_9a6000133533848edf99ad2eb927d1a4_cryptolocker.exe

Resource

win7-20240221-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-05-22_9a6000133533848edf99ad2eb927d1a4_cryptolocker.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-05-22_9a6000133533848edf99ad2eb927d1a4_cryptolocker
- Size
  
  59KB
- MD5
  
  9a6000133533848edf99ad2eb927d1a4
- SHA1
  
  736a6e2fda031691b56521fbab0db9f85d691c94
- SHA256
  
  db5eb4c4c39d21f4cbb4fd81a6b1a83149711d47e959433160b709b43575163e
- SHA512
  
  433c3e11204ff5ebcf2f671c4b9aa83657ad70ba8cebedcd31837c4c7ff85fcbbe3c9ef2db144576456d721e02d0ad6b8ac59243b0a9ea079c24c623d0f58e90
- SSDEEP
  
  768:3Uz7yVEhs9+Hs1SQtOOtEvwDpjO9+4hdCY8EQMjpi/Wpi3B3URiLqCyLuAx8XGJ0:3P+HsMQMOtEvwDpjoHy7B3g9CWuAxWG0
Score

9^/10
- Detection of CryptoLocker Variants
- Detection of Cryptolocker Samples
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy