198f14d9e246dae36942f76326a97cc26c01b2d99d90b27ab16b8256335ba1c6 | Triage

Submit
Reports

Overview

overview

Static

static

2024-05-22...er.exe

windows7-x64

9

2024-05-22...er.exe

windows10-2004-x64

9

Sharing

General

Target

2024-05-22_ebd10ce029ce7aeacfbcf1e59a6cf011_cryptolocker
Size

41KB
Sample

240522-ddln9saa78
MD5

ebd10ce029ce7aeacfbcf1e59a6cf011
SHA1

98ebeb7480514725348bff8f5a40d5d5524eb7f4
SHA256

198f14d9e246dae36942f76326a97cc26c01b2d99d90b27ab16b8256335ba1c6
SHA512

eacb48a46fd813312a54b33c14cd1be5a7148bde245650042283cca38e1633a2d9685b3c1898204671974654c715f53262ed1894f47054fb3f6df2547bae4c21
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaac4HK/wSvuQTCjfy:X6QFElP6n+gJQMOtEvwDpjBsYK/f4fy

Score

10^/10

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

2024-05-22_ebd10ce029ce7aeacfbcf1e59a6cf011_cryptolocker.exe

Resource

win7-20240221-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-05-22_ebd10ce029ce7aeacfbcf1e59a6cf011_cryptolocker.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-05-22_ebd10ce029ce7aeacfbcf1e59a6cf011_cryptolocker
- Size
  
  41KB
- MD5
  
  ebd10ce029ce7aeacfbcf1e59a6cf011
- SHA1
  
  98ebeb7480514725348bff8f5a40d5d5524eb7f4
- SHA256
  
  198f14d9e246dae36942f76326a97cc26c01b2d99d90b27ab16b8256335ba1c6
- SHA512
  
  eacb48a46fd813312a54b33c14cd1be5a7148bde245650042283cca38e1633a2d9685b3c1898204671974654c715f53262ed1894f47054fb3f6df2547bae4c21
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaac4HK/wSvuQTCjfy:X6QFElP6n+gJQMOtEvwDpjBsYK/f4fy
Score

9^/10
- Detection of CryptoLocker Variants
- Detection of Cryptolocker Samples
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy