Overview

overview

10

Static

static

10

2024-06-05...er.exe

windows7-x64

9

2024-06-05...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-06-05_475fd1b455c11f756e46dda3c56f5f88_cryptolocker

  • Size

    31KB

  • Sample

    240605-a5zhnaha4z

  • MD5

    475fd1b455c11f756e46dda3c56f5f88

  • SHA1

    b0be7a566963640f7d993de44841b31ba459c7e3

  • SHA256

    68508bd079e2a0f49cbe77cb03de423a604aa78cebf08464b62cb6424a836005

  • SHA512

    382f6344fa2285dc68e0e37c7fd8cbf6335d0739f8715f0ac33932e14b3d63107507154ea2c118b631f83f4a87b3c2eb1ea7ee8c32a927b8103506da4b596701

  • SSDEEP

    384:bM7Q0pjC4GybxMv01d3AcASBQMf6i/zznum+U8Ss87vhik:b/yC4GyNM01GuQMNXum+NSnik

Score
10/10
discovery

Malware Config

Targets

    • Target

      2024-06-05_475fd1b455c11f756e46dda3c56f5f88_cryptolocker

    • Size

      31KB

    • MD5

      475fd1b455c11f756e46dda3c56f5f88

    • SHA1

      b0be7a566963640f7d993de44841b31ba459c7e3

    • SHA256

      68508bd079e2a0f49cbe77cb03de423a604aa78cebf08464b62cb6424a836005

    • SHA512

      382f6344fa2285dc68e0e37c7fd8cbf6335d0739f8715f0ac33932e14b3d63107507154ea2c118b631f83f4a87b3c2eb1ea7ee8c32a927b8103506da4b596701

    • SSDEEP

      384:bM7Q0pjC4GybxMv01d3AcASBQMf6i/zznum+U8Ss87vhik:b/yC4GyNM01GuQMNXum+NSnik

    Score
    9/10
    discovery

    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks