Overview

overview

10

Static

static

10

2024-02-13...er.exe

windows7-x64

9

2024-02-13...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-02-13_da775ff177cec7f0cbdc08dd37046128_cryptolocker

  • Size

    36KB

  • Sample

    240213-2nh8wscc22

  • MD5

    da775ff177cec7f0cbdc08dd37046128

  • SHA1

    d4e2c49480de70d6ced9fd4e3d869651d003b858

  • SHA256

    93edf22c9001d7a85e4028e667f5787023fd893f0063cee519b7b506042818b9

  • SHA512

    0221b240eab98cbd4c4d50e9ce1fbac30e8055d23627b09aa3e406b886dc933a71ebc78c329d865d0ef9466cf132f70f2401ff169a36edb464d189f7f9475372

  • SSDEEP

    768:TS5nQJ24LR7tOOtEvwDpjGqPhqlcnv00Gf:m5nkFNMOtEvwDpjG8h00Gf

Score
10/10

Malware Config

Targets

    • Target

      2024-02-13_da775ff177cec7f0cbdc08dd37046128_cryptolocker

    • Size

      36KB

    • MD5

      da775ff177cec7f0cbdc08dd37046128

    • SHA1

      d4e2c49480de70d6ced9fd4e3d869651d003b858

    • SHA256

      93edf22c9001d7a85e4028e667f5787023fd893f0063cee519b7b506042818b9

    • SHA512

      0221b240eab98cbd4c4d50e9ce1fbac30e8055d23627b09aa3e406b886dc933a71ebc78c329d865d0ef9466cf132f70f2401ff169a36edb464d189f7f9475372

    • SSDEEP

      768:TS5nQJ24LR7tOOtEvwDpjGqPhqlcnv00Gf:m5nkFNMOtEvwDpjG8h00Gf

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks