Overview

overview

10

Static

static

10

2024-05-29...er.exe

windows7-x64

9

2024-05-29...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-05-29_575d413389a430764dca46edb07bc05c_cryptolocker

  • Size

    97KB

  • Sample

    240529-n2zadaeb73

  • MD5

    575d413389a430764dca46edb07bc05c

  • SHA1

    c3a16e67180206d23c354392e009fb943598dee3

  • SHA256

    16e733d27319fb8ec715601b5dacb6c5df9fba0ab75f7796e031ceabbec1d394

  • SHA512

    bf50260f059b5b3e7f5c633175a9d555eacf135480bbe0eb7b8b4079ae83bb5a0b3a4bed288bf5cc218e31d886e427b7fa9176b7a5e2d52c3dd86e0f38c8b903

  • SSDEEP

    1536:V6QFElP6n+gMQMOtEvwDpjQGYQbN/PKwNgp0z:V6a+pOtEvwDpjtzr

Score
10/10

Malware Config

Targets

    • Target

      2024-05-29_575d413389a430764dca46edb07bc05c_cryptolocker

    • Size

      97KB

    • MD5

      575d413389a430764dca46edb07bc05c

    • SHA1

      c3a16e67180206d23c354392e009fb943598dee3

    • SHA256

      16e733d27319fb8ec715601b5dacb6c5df9fba0ab75f7796e031ceabbec1d394

    • SHA512

      bf50260f059b5b3e7f5c633175a9d555eacf135480bbe0eb7b8b4079ae83bb5a0b3a4bed288bf5cc218e31d886e427b7fa9176b7a5e2d52c3dd86e0f38c8b903

    • SSDEEP

      1536:V6QFElP6n+gMQMOtEvwDpjQGYQbN/PKwNgp0z:V6a+pOtEvwDpjtzr

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks