Overview

overview

10

Static

static

10

2024-05-23...er.exe

windows7-x64

9

2024-05-23...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-23_faf996102965acce91f55ca6334586c3_cryptolocker

  • Size

    53KB

  • Sample

    240523-bc75rsfh52

  • MD5

    faf996102965acce91f55ca6334586c3

  • SHA1

    c7c5fcd430975631728620c6b5d57fd002b6056a

  • SHA256

    c2d2ba3440ead57b50f253a46ded94f0fc3676a622e34035fa281def6c298194

  • SHA512

    9f1ecb93fc7862f2763b763b358255969b3756da6c8295900734f17394fa24bcbd11ab19cb43359ac6355b0cc58775f773eb3aeee2a79f0463ee29efdc495cbc

  • SSDEEP

    1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszsbKY1xzpAIKx6Y:aq7tdgI2MyzNORQtOflIwoHNV2XBFV7j

Score
10/10

Malware Config

Targets

    • Target

      2024-05-23_faf996102965acce91f55ca6334586c3_cryptolocker

    • Size

      53KB

    • MD5

      faf996102965acce91f55ca6334586c3

    • SHA1

      c7c5fcd430975631728620c6b5d57fd002b6056a

    • SHA256

      c2d2ba3440ead57b50f253a46ded94f0fc3676a622e34035fa281def6c298194

    • SHA512

      9f1ecb93fc7862f2763b763b358255969b3756da6c8295900734f17394fa24bcbd11ab19cb43359ac6355b0cc58775f773eb3aeee2a79f0463ee29efdc495cbc

    • SSDEEP

      1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszsbKY1xzpAIKx6Y:aq7tdgI2MyzNORQtOflIwoHNV2XBFV7j

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks