Overview

overview

10

Static

static

10

2024-05-28...er.exe

windows7-x64

9

2024-05-28...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-05-28_e7ed408c215cd3b6cb922d7be02af5f3_cryptolocker

  • Size

    43KB

  • Sample

    240528-hmgh5aba94

  • MD5

    e7ed408c215cd3b6cb922d7be02af5f3

  • SHA1

    72e7c99ce1f04e0a0ccf0d66ad3e92ec0ad95744

  • SHA256

    01965ed779b85666269ae4dc46a7e933e29852a0873bfa9b254a0429081756a3

  • SHA512

    417c5c8533b1a9dbab5a587ab2e077d2cb101dad0be10c4357df2ed40cded43de094b67e2d7550e3d36fb45d9878a75b1b87951e2be41a795e7029b101976173

  • SSDEEP

    384:bm74uGLLQRcsdeQ72ngEr4K7YmE8uYo0nrlwfjDUTu:bm74zYcgT/Ek70ryfjMu

Score
10/10

Malware Config

Targets

    • Target

      2024-05-28_e7ed408c215cd3b6cb922d7be02af5f3_cryptolocker

    • Size

      43KB

    • MD5

      e7ed408c215cd3b6cb922d7be02af5f3

    • SHA1

      72e7c99ce1f04e0a0ccf0d66ad3e92ec0ad95744

    • SHA256

      01965ed779b85666269ae4dc46a7e933e29852a0873bfa9b254a0429081756a3

    • SHA512

      417c5c8533b1a9dbab5a587ab2e077d2cb101dad0be10c4357df2ed40cded43de094b67e2d7550e3d36fb45d9878a75b1b87951e2be41a795e7029b101976173

    • SSDEEP

      384:bm74uGLLQRcsdeQ72ngEr4K7YmE8uYo0nrlwfjDUTu:bm74zYcgT/Ek70ryfjMu

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks