Overview

overview

10

Static

static

10

2024-05-23...er.exe

windows7-x64

9

2024-05-23...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-23_770614f32fe6318c25fffb6ab0e18bca_cryptolocker

  • Size

    65KB

  • Sample

    240523-a4ag5sfb9v

  • MD5

    770614f32fe6318c25fffb6ab0e18bca

  • SHA1

    c436fcc5b57c45c1a54ba7290faeefc96c78f9b7

  • SHA256

    a8e47e51f8d88910a3a5338d170f13f2ce8786e368e3c6ae98ef16818b50d074

  • SHA512

    965f8aaee9d38efb2cb6600017224558f6ad35675ff140cb3b1ec7acb7354806d152a082d5979491caced548dc5a4ce3082783d08d34d69a7c3e60af9fc46f77

  • SSDEEP

    1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszudnYTjipvF299Np:aq7tdgI2MyzNORQtOflIwoHNV2XBFV77

Score
10/10

Malware Config

Targets

    • Target

      2024-05-23_770614f32fe6318c25fffb6ab0e18bca_cryptolocker

    • Size

      65KB

    • MD5

      770614f32fe6318c25fffb6ab0e18bca

    • SHA1

      c436fcc5b57c45c1a54ba7290faeefc96c78f9b7

    • SHA256

      a8e47e51f8d88910a3a5338d170f13f2ce8786e368e3c6ae98ef16818b50d074

    • SHA512

      965f8aaee9d38efb2cb6600017224558f6ad35675ff140cb3b1ec7acb7354806d152a082d5979491caced548dc5a4ce3082783d08d34d69a7c3e60af9fc46f77

    • SSDEEP

      1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszudnYTjipvF299Np:aq7tdgI2MyzNORQtOflIwoHNV2XBFV77

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks