Overview

overview

10

Static

static

10

2024-05-24...er.exe

windows7-x64

9

2024-05-24...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-24_10016e321ebdac187e52c7491639087e_cryptolocker

  • Size

    66KB

  • Sample

    240524-f3y21aeh77

  • MD5

    10016e321ebdac187e52c7491639087e

  • SHA1

    c2b034afa97d577a5891839897e9403edae180db

  • SHA256

    36cbae402419d78b1216ca5ebbc27bf7ed95ce8a9ef50b98e04012e986d7ae0a

  • SHA512

    a6cb5e29ab3729895d41b85193669d160d0f0e34557fd4fa26771dc1dae046e306ce8ba86d7bca3a98dfba045a7ce516d7f9956580ba5c9f2cbdbf2e57e38100

  • SSDEEP

    1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2l9tMPvdfGyz:TCjsIOtEvwDpj5HE/OUHnSMY4

Score
10/10

Malware Config

Targets

    • Target

      2024-05-24_10016e321ebdac187e52c7491639087e_cryptolocker

    • Size

      66KB

    • MD5

      10016e321ebdac187e52c7491639087e

    • SHA1

      c2b034afa97d577a5891839897e9403edae180db

    • SHA256

      36cbae402419d78b1216ca5ebbc27bf7ed95ce8a9ef50b98e04012e986d7ae0a

    • SHA512

      a6cb5e29ab3729895d41b85193669d160d0f0e34557fd4fa26771dc1dae046e306ce8ba86d7bca3a98dfba045a7ce516d7f9956580ba5c9f2cbdbf2e57e38100

    • SSDEEP

      1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2l9tMPvdfGyz:TCjsIOtEvwDpj5HE/OUHnSMY4

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks