General

  • Target

    2024-01-26_fb63c487e03da577298748689073c39b_cryptolocker

  • Size

    53KB

  • Sample

    240126-lmdzsaaha9

  • MD5

    fb63c487e03da577298748689073c39b

  • SHA1

    ec0d86bdf515320875a4598e8841d9ba1e9f1022

  • SHA256

    299c5577817ad7c686117e1aa137c9c11ab882523ab08dbd50526f638b707135

  • SHA512

    14cd4b60415ef06ef90ee937d017c4a120781ff86ac3e45e381b6d462e04c67a9567a27e2879dc11a7e9f2956d5922e5d926f0f94958028e0cee1c8b1633d6a6

  • SSDEEP

    768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4hdCW1nw71TkhsiPn1YFv0itD:vj+jsMQMOtEvwDpj5HH1nw73KOFsiB

Score
10/10

Malware Config

Targets

    • Target

      2024-01-26_fb63c487e03da577298748689073c39b_cryptolocker

    • Size

      53KB

    • MD5

      fb63c487e03da577298748689073c39b

    • SHA1

      ec0d86bdf515320875a4598e8841d9ba1e9f1022

    • SHA256

      299c5577817ad7c686117e1aa137c9c11ab882523ab08dbd50526f638b707135

    • SHA512

      14cd4b60415ef06ef90ee937d017c4a120781ff86ac3e45e381b6d462e04c67a9567a27e2879dc11a7e9f2956d5922e5d926f0f94958028e0cee1c8b1633d6a6

    • SSDEEP

      768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4hdCW1nw71TkhsiPn1YFv0itD:vj+jsMQMOtEvwDpj5HH1nw73KOFsiB

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks