Overview

overview

10

Static

static

10

2024-05-29...er.exe

windows7-x64

9

2024-05-29...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-05-29_c25e584ec86e5181e9c432d3d1a03e11_cryptolocker

  • Size

    43KB

  • Sample

    240529-x84ccafb8z

  • MD5

    c25e584ec86e5181e9c432d3d1a03e11

  • SHA1

    3b5e4ddf70b12bbddfe66bf52669efc6889677ef

  • SHA256

    d471673ace078a5269e8518b0d9bf0ec8605d760894ddf5c0c4c68b4b28e8445

  • SHA512

    c014592116e8d113c324f9b359fef56e86afcbe18d88163822b8d8cdc62290153ebc00809623797cb645c1a0da933412be0f0d6841bc6cd982a8d957a9a4378e

  • SSDEEP

    768:bIDOw9UiaCHfjnE0Sf88AvvP1oghYvm9/6DyE9x3fJ:bIDOw9a0Dwo3P1ojvUSD79Rh

Score
10/10

Malware Config

Targets

    • Target

      2024-05-29_c25e584ec86e5181e9c432d3d1a03e11_cryptolocker

    • Size

      43KB

    • MD5

      c25e584ec86e5181e9c432d3d1a03e11

    • SHA1

      3b5e4ddf70b12bbddfe66bf52669efc6889677ef

    • SHA256

      d471673ace078a5269e8518b0d9bf0ec8605d760894ddf5c0c4c68b4b28e8445

    • SHA512

      c014592116e8d113c324f9b359fef56e86afcbe18d88163822b8d8cdc62290153ebc00809623797cb645c1a0da933412be0f0d6841bc6cd982a8d957a9a4378e

    • SSDEEP

      768:bIDOw9UiaCHfjnE0Sf88AvvP1oghYvm9/6DyE9x3fJ:bIDOw9a0Dwo3P1ojvUSD79Rh

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks