Overview

overview

10

Static

static

10

2024-05-23...er.exe

windows7-x64

9

2024-05-23...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-23_f1ae0fa9760b7ad6b5d125336a5f462e_cryptolocker

  • Size

    64KB

  • Sample

    240523-bcztdsfh45

  • MD5

    f1ae0fa9760b7ad6b5d125336a5f462e

  • SHA1

    154047e2c753022adb4035af55a092d0542627cf

  • SHA256

    48d0e77737b3ed9bcecae5a02188eb452d1ff96e2f56affec19ecc61cb8e6ffb

  • SHA512

    094603f2e8a2b472de4849b7d660c3c16d1e68a306702c9aa7973ae7b627013f90f96adf5c3940ebd1593dc146fff191c3e1f6da99c36d3d73b674b2c97c55ec

  • SSDEEP

    1536:qmbhXDmjr5MOtEvwDpj5cDtKkQZQRKb61vSbgtsi1:BbdDmjr+OtEvwDpjM8c

Score
10/10

Malware Config

Targets

    • Target

      2024-05-23_f1ae0fa9760b7ad6b5d125336a5f462e_cryptolocker

    • Size

      64KB

    • MD5

      f1ae0fa9760b7ad6b5d125336a5f462e

    • SHA1

      154047e2c753022adb4035af55a092d0542627cf

    • SHA256

      48d0e77737b3ed9bcecae5a02188eb452d1ff96e2f56affec19ecc61cb8e6ffb

    • SHA512

      094603f2e8a2b472de4849b7d660c3c16d1e68a306702c9aa7973ae7b627013f90f96adf5c3940ebd1593dc146fff191c3e1f6da99c36d3d73b674b2c97c55ec

    • SSDEEP

      1536:qmbhXDmjr5MOtEvwDpj5cDtKkQZQRKb61vSbgtsi1:BbdDmjr+OtEvwDpjM8c

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • UPX dump on OEP (original entry point)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks