Overview

overview

10

Static

static

10

2024-01-24...er.exe

windows7-x64

9

2024-01-24...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-01-24_6ab2eb723c93e3539c9e1a4a87fffcdc_cryptolocker

  • Size

    53KB

  • Sample

    240124-ss47gsddbp

  • MD5

    6ab2eb723c93e3539c9e1a4a87fffcdc

  • SHA1

    1dcdc0e834f1aeb953e366fe462ee9d1e8ce2d07

  • SHA256

    da0761dd885261f3f36f6829e4b34901ad2d65c54ec2b8f1d2f14eb6ed924d29

  • SHA512

    59b831e9f44cb4e756ddfa3c0876ad8daeed467eba77492b39c6254d70709c8fd15722ef9d57b32ed5bbe2ed5d0a40975f45386ce3498041ee8641dd25080fd2

  • SSDEEP

    768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5QJz7E:6j+1NMOtEvwDpjr8oxEG

Score
10/10

Malware Config

Targets

    • Target

      2024-01-24_6ab2eb723c93e3539c9e1a4a87fffcdc_cryptolocker

    • Size

      53KB

    • MD5

      6ab2eb723c93e3539c9e1a4a87fffcdc

    • SHA1

      1dcdc0e834f1aeb953e366fe462ee9d1e8ce2d07

    • SHA256

      da0761dd885261f3f36f6829e4b34901ad2d65c54ec2b8f1d2f14eb6ed924d29

    • SHA512

      59b831e9f44cb4e756ddfa3c0876ad8daeed467eba77492b39c6254d70709c8fd15722ef9d57b32ed5bbe2ed5d0a40975f45386ce3498041ee8641dd25080fd2

    • SSDEEP

      768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5QJz7E:6j+1NMOtEvwDpjr8oxEG

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks