Overview

overview

10

Static

static

10

2024-02-12...er.exe

windows7-x64

9

2024-02-12...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-02-12_72f2b6b72791fbc37e643c2d8dc5064e_cryptolocker

  • Size

    100KB

  • Sample

    240212-ggayqadh5x

  • MD5

    72f2b6b72791fbc37e643c2d8dc5064e

  • SHA1

    6e3df7afeb168d8162f6e1d479d9233a1f615c4b

  • SHA256

    51759eca987506e5b90e91721560ac293654aa67af16952d4db2a58301c379c3

  • SHA512

    2680c7e16ed9adfafe109bedffb3e1be69eb1cd0d47dab1f09e07de6c0596330301caa1f87755ed67b0a20bb56705e4feabfbd540e13101d03ddb020a364c78b

  • SSDEEP

    768:XS5nQJ24LR1bytOOtEvwDpjNbZ7uyA36S7MpxRiWjzUNu5i4j:i5nkFGMOtEvwDpjNbwQEIikgNMj

Score
10/10

Malware Config

Targets

    • Target

      2024-02-12_72f2b6b72791fbc37e643c2d8dc5064e_cryptolocker

    • Size

      100KB

    • MD5

      72f2b6b72791fbc37e643c2d8dc5064e

    • SHA1

      6e3df7afeb168d8162f6e1d479d9233a1f615c4b

    • SHA256

      51759eca987506e5b90e91721560ac293654aa67af16952d4db2a58301c379c3

    • SHA512

      2680c7e16ed9adfafe109bedffb3e1be69eb1cd0d47dab1f09e07de6c0596330301caa1f87755ed67b0a20bb56705e4feabfbd540e13101d03ddb020a364c78b

    • SSDEEP

      768:XS5nQJ24LR1bytOOtEvwDpjNbZ7uyA36S7MpxRiWjzUNu5i4j:i5nkFGMOtEvwDpjNbwQEIikgNMj

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks