70bb9faea93f27366deed89be5aed194a0168e5863c784f0e221e8f73211eae2 | Triage

Submit
Reports

Overview

overview

Static

static

2024-05-22...er.exe

windows7-x64

9

2024-05-22...er.exe

windows10-2004-x64

9

Sharing

General

Target

2024-05-22_073201000b3d45a8de986cd57b8992d8_cryptolocker
Size

41KB
Sample

240522-ctsl3shc58
MD5

073201000b3d45a8de986cd57b8992d8
SHA1

d647e350e61c467959f0de71e80415d2e6ce674a
SHA256

70bb9faea93f27366deed89be5aed194a0168e5863c784f0e221e8f73211eae2
SHA512

bab2de62d5759e1f86afe0eeb3d79baa381308929392648249de782a4d24dd3ee2bac39ea433076af0418e2ae12f197d57b9d61214a29d2434a1dd8fd284c15e
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaac4HKcfr9OrC:X6QFElP6n+gJQMOtEvwDpjBsYK6r0rC

Score

10^/10

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

2024-05-22_073201000b3d45a8de986cd57b8992d8_cryptolocker.exe

Resource

win7-20240215-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-05-22_073201000b3d45a8de986cd57b8992d8_cryptolocker.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-05-22_073201000b3d45a8de986cd57b8992d8_cryptolocker
- Size
  
  41KB
- MD5
  
  073201000b3d45a8de986cd57b8992d8
- SHA1
  
  d647e350e61c467959f0de71e80415d2e6ce674a
- SHA256
  
  70bb9faea93f27366deed89be5aed194a0168e5863c784f0e221e8f73211eae2
- SHA512
  
  bab2de62d5759e1f86afe0eeb3d79baa381308929392648249de782a4d24dd3ee2bac39ea433076af0418e2ae12f197d57b9d61214a29d2434a1dd8fd284c15e
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaac4HKcfr9OrC:X6QFElP6n+gJQMOtEvwDpjBsYK6r0rC
Score

9^/10
- Detection of CryptoLocker Variants
- Detection of Cryptolocker Samples
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy