Overview

overview

10

Static

static

10

2024-06-04...er.exe

windows7-x64

9

2024-06-04...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-06-04_86627b3c319ef72005a5b3afc66db786_cryptolocker

  • Size

    45KB

  • Sample

    240604-ffbm7aeb78

  • MD5

    86627b3c319ef72005a5b3afc66db786

  • SHA1

    77d7134894b5f0af7ba0c018a7539fa2a8f152af

  • SHA256

    f05f8edaf2fe72a4e166a7642b4cb0174a407cae764e389eb7f35e74cd748b73

  • SHA512

    fae39023e324ad3d3892ce1008fa773b7a4abbba161eb1a8d143159218b61df8b8f697d4d36c5a752897afa7a43a0adbfcd26164f77a3afab1e81679fac5f987

  • SSDEEP

    384:bm74uGLLQRcsdeQ72ngEr4K7YmE8jb0nrlwfjDUadQC8F:bm74zYcgT/EkM0ryfjPdQZF

Score
10/10

Malware Config

Targets

    • Target

      2024-06-04_86627b3c319ef72005a5b3afc66db786_cryptolocker

    • Size

      45KB

    • MD5

      86627b3c319ef72005a5b3afc66db786

    • SHA1

      77d7134894b5f0af7ba0c018a7539fa2a8f152af

    • SHA256

      f05f8edaf2fe72a4e166a7642b4cb0174a407cae764e389eb7f35e74cd748b73

    • SHA512

      fae39023e324ad3d3892ce1008fa773b7a4abbba161eb1a8d143159218b61df8b8f697d4d36c5a752897afa7a43a0adbfcd26164f77a3afab1e81679fac5f987

    • SSDEEP

      384:bm74uGLLQRcsdeQ72ngEr4K7YmE8jb0nrlwfjDUadQC8F:bm74zYcgT/EkM0ryfjPdQZF

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks