Overview

overview

10

Static

static

10

2024-05-28...er.exe

windows7-x64

9

2024-05-28...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-05-28_22d2454b9d56d0849624047b9991d07c_cryptolocker

  • Size

    54KB

  • Sample

    240528-cx3w8abd5v

  • MD5

    22d2454b9d56d0849624047b9991d07c

  • SHA1

    41319372de32c469cfd01a0b57cbb746e51922af

  • SHA256

    5042e156aaf5a1c019af9faa088bdf32e59efb459efe819c4609896efc4bc2c8

  • SHA512

    55b3cb3bfe6c2cfa402a53ffd66e700b84edbec32ce30b3ceaf296be0604d3b11cd80b86461c4426a44f5d25709e2e96ef87fcbb03f3ab26e14e4447eb6b37bf

  • SSDEEP

    1536:V6QFElP6n+gMQMOtEvwDpjeJQ7pojaklPsP:V6a+pOtEvwDpjr

Score
10/10

Malware Config

Targets

    • Target

      2024-05-28_22d2454b9d56d0849624047b9991d07c_cryptolocker

    • Size

      54KB

    • MD5

      22d2454b9d56d0849624047b9991d07c

    • SHA1

      41319372de32c469cfd01a0b57cbb746e51922af

    • SHA256

      5042e156aaf5a1c019af9faa088bdf32e59efb459efe819c4609896efc4bc2c8

    • SHA512

      55b3cb3bfe6c2cfa402a53ffd66e700b84edbec32ce30b3ceaf296be0604d3b11cd80b86461c4426a44f5d25709e2e96ef87fcbb03f3ab26e14e4447eb6b37bf

    • SSDEEP

      1536:V6QFElP6n+gMQMOtEvwDpjeJQ7pojaklPsP:V6a+pOtEvwDpjr

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks