Overview

overview

10

Static

static

10

2024-01-28...er.exe

windows7-x64

9

2024-01-28...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-01-28_0680c8fda2041aa0c035567ad3ea80be_cryptolocker

  • Size

    40KB

  • Sample

    240128-h7kfhsfegp

  • MD5

    0680c8fda2041aa0c035567ad3ea80be

  • SHA1

    9be3a9e840a484d166194b9feb202c09901ca393

  • SHA256

    9a3ed2a9e13000af9e86f1cd846874067009290b7a208c1c0396e3d5e4a9cda1

  • SHA512

    22ce0251f3a033dee125ced5d7cf8a5531c780383d1ab785347ec547d967700edba9f6f83a642369ae93c474ce4ca484733b1975dfc7bd1fa9523d62501aaa78

  • SSDEEP

    768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqhMWKay9x4O:6j+1NMOtEvwDpjroKz

Score
10/10

Malware Config

Targets

    • Target

      2024-01-28_0680c8fda2041aa0c035567ad3ea80be_cryptolocker

    • Size

      40KB

    • MD5

      0680c8fda2041aa0c035567ad3ea80be

    • SHA1

      9be3a9e840a484d166194b9feb202c09901ca393

    • SHA256

      9a3ed2a9e13000af9e86f1cd846874067009290b7a208c1c0396e3d5e4a9cda1

    • SHA512

      22ce0251f3a033dee125ced5d7cf8a5531c780383d1ab785347ec547d967700edba9f6f83a642369ae93c474ce4ca484733b1975dfc7bd1fa9523d62501aaa78

    • SSDEEP

      768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqhMWKay9x4O:6j+1NMOtEvwDpjroKz

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks