99ef1b2e3a71100f713398c07b18c871ae5c5705648978808c3adfab53046d16 | Triage

Submit
Reports

Overview

overview

Static

static

2024-05-22...er.exe

windows7-x64

9

2024-05-22...er.exe

windows10-2004-x64

9

Sharing

General

Target

2024-05-22_e8c52606abbc65b1ce26c9b84ac8e97c_cryptolocker
Size

70KB
Sample

240522-ddaa8sab8v
MD5

e8c52606abbc65b1ce26c9b84ac8e97c
SHA1

8e6cd470cc56f18b39f6dece93f3d7ea7a892a85
SHA256

99ef1b2e3a71100f713398c07b18c871ae5c5705648978808c3adfab53046d16
SHA512

648a5d36e5d8428554353e5e012288ed7040870c9f57e0a7ad3fab5328616233459cb59ca8aef8d094815748e3df3d7f2ca1ec2974cf11decc65eda78078b24b
SSDEEP

768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4ZPsED3VK2+ZtyOjgO4r9vFAg2rq2g1B/Ro:vj+jsMQMOtEvwDpj5HZYTjipvF24Q

Score

10^/10

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

2024-05-22_e8c52606abbc65b1ce26c9b84ac8e97c_cryptolocker.exe

Resource

win7-20240215-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-05-22_e8c52606abbc65b1ce26c9b84ac8e97c_cryptolocker.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-05-22_e8c52606abbc65b1ce26c9b84ac8e97c_cryptolocker
- Size
  
  70KB
- MD5
  
  e8c52606abbc65b1ce26c9b84ac8e97c
- SHA1
  
  8e6cd470cc56f18b39f6dece93f3d7ea7a892a85
- SHA256
  
  99ef1b2e3a71100f713398c07b18c871ae5c5705648978808c3adfab53046d16
- SHA512
  
  648a5d36e5d8428554353e5e012288ed7040870c9f57e0a7ad3fab5328616233459cb59ca8aef8d094815748e3df3d7f2ca1ec2974cf11decc65eda78078b24b
- SSDEEP
  
  768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4ZPsED3VK2+ZtyOjgO4r9vFAg2rq2g1B/Ro:vj+jsMQMOtEvwDpj5HZYTjipvF24Q
Score

9^/10
- Detection of CryptoLocker Variants
- Detection of Cryptolocker Samples
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Subvert Trust Controls

Install Root Certificate

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy