4e597a7b09369b747a757dc3fbd0dfa56977cbea2b47ad9b9ed645efcd91d7df | Triage

Submit
Reports

Overview

overview

Static

static

2024-06-24...er.exe

windows7-x64

9

2024-06-24...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

Target

2024-06-24_e125d50f8f1d29dd74ecfcb41512dd2f_cryptolocker
Size

86KB
Sample

240624-mlz2asxfmf
MD5

e125d50f8f1d29dd74ecfcb41512dd2f
SHA1

2d88bdb175fbc795f57ca78c58e4491fb7a4d6ca
SHA256

4e597a7b09369b747a757dc3fbd0dfa56977cbea2b47ad9b9ed645efcd91d7df
SHA512

26a1fd04f9e332715af0afdf6b21cc85d970881771b4a725e56a8e4ac3ffd4599d8b0ab010f91bf1744b89663d71e5455a50f63d093d02d328ffa4eb2f0cbb48
SSDEEP

1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMrC+5:TCjsIOtEvwDpj5HE/OUHnSMf

Score

10^/10

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

2024-06-24_e125d50f8f1d29dd74ecfcb41512dd2f_cryptolocker.exe

Resource

win7-20240611-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

2024-06-24_e125d50f8f1d29dd74ecfcb41512dd2f_cryptolocker.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  2024-06-24_e125d50f8f1d29dd74ecfcb41512dd2f_cryptolocker
- Size
  
  86KB
- MD5
  
  e125d50f8f1d29dd74ecfcb41512dd2f
- SHA1
  
  2d88bdb175fbc795f57ca78c58e4491fb7a4d6ca
- SHA256
  
  4e597a7b09369b747a757dc3fbd0dfa56977cbea2b47ad9b9ed645efcd91d7df
- SHA512
  
  26a1fd04f9e332715af0afdf6b21cc85d970881771b4a725e56a8e4ac3ffd4599d8b0ab010f91bf1744b89663d71e5455a50f63d093d02d328ffa4eb2f0cbb48
- SSDEEP
  
  1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMrC+5:TCjsIOtEvwDpj5HE/OUHnSMf
Score

9^/10
- Detection of CryptoLocker Variants
- Detection of Cryptolocker Samples
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy