Overview

overview

10

Static

static

10

2024-05-22...er.exe

windows7-x64

9

2024-05-22...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-22_ae212c5419219f9ef2728ec62d6c4c4d_cryptolocker

  • Size

    76KB

  • Sample

    240522-c8jmqaaa5t

  • MD5

    ae212c5419219f9ef2728ec62d6c4c4d

  • SHA1

    2bb23c5c7ff67afadf01a0c8195d66a22943a797

  • SHA256

    8f7b0423b52b06483a60fbdbb5d7a6bd74e19b9e2a9801f0c9120874156a04ac

  • SHA512

    a16df69b07758b4396feedeba8409bb12a36bce13f803cfa94129ed1f216b86a3c96944e4a6bee8a7c1f7ad1fb4b710a7439bc1359813cdcaf7b3be82bc641d6

  • SSDEEP

    1536:X6QFElP6n+gJQMOtEvwDpjBZYTjipvF2bx1RUv:X6a+SOtEvwDpjBZYvQd2G

Score
10/10

Malware Config

Targets

    • Target

      2024-05-22_ae212c5419219f9ef2728ec62d6c4c4d_cryptolocker

    • Size

      76KB

    • MD5

      ae212c5419219f9ef2728ec62d6c4c4d

    • SHA1

      2bb23c5c7ff67afadf01a0c8195d66a22943a797

    • SHA256

      8f7b0423b52b06483a60fbdbb5d7a6bd74e19b9e2a9801f0c9120874156a04ac

    • SHA512

      a16df69b07758b4396feedeba8409bb12a36bce13f803cfa94129ed1f216b86a3c96944e4a6bee8a7c1f7ad1fb4b710a7439bc1359813cdcaf7b3be82bc641d6

    • SSDEEP

      1536:X6QFElP6n+gJQMOtEvwDpjBZYTjipvF2bx1RUv:X6a+SOtEvwDpjBZYvQd2G

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks