Overview

overview

10

Static

static

10

2024-05-22...er.exe

windows7-x64

9

2024-05-22...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-22_bc3c7b14f589d2828611c67bf9b8dbec_cryptolocker

  • Size

    78KB

  • Sample

    240522-c9xwqshh49

  • MD5

    bc3c7b14f589d2828611c67bf9b8dbec

  • SHA1

    dfbd3b95f7d1f0d98655e28c02030f7a11490269

  • SHA256

    84980547423b4cd6e04b1116c90f8a63557e0e43bd40e2597b2cd83b38225eea

  • SHA512

    c77a5bea0b4ef796c8915e00a299a8bb75e7a3859ab85121cc75bda5eda2a3261dc86945fa58d4f9735f24f51e02d8ce9da51bc7af4a570e5e2510469c256b80

  • SSDEEP

    1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ3KUYZ:ZVxkGOtEvwDpjca2

Score
10/10

Malware Config

Targets

    • Target

      2024-05-22_bc3c7b14f589d2828611c67bf9b8dbec_cryptolocker

    • Size

      78KB

    • MD5

      bc3c7b14f589d2828611c67bf9b8dbec

    • SHA1

      dfbd3b95f7d1f0d98655e28c02030f7a11490269

    • SHA256

      84980547423b4cd6e04b1116c90f8a63557e0e43bd40e2597b2cd83b38225eea

    • SHA512

      c77a5bea0b4ef796c8915e00a299a8bb75e7a3859ab85121cc75bda5eda2a3261dc86945fa58d4f9735f24f51e02d8ce9da51bc7af4a570e5e2510469c256b80

    • SSDEEP

      1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ3KUYZ:ZVxkGOtEvwDpjca2

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

1
T1553

Install Root Certificate

1
T1553.004

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks