Overview

overview

10

Static

static

10

2024-02-13...er.exe

windows7-x64

9

2024-02-13...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-02-13_12e2d1c2de65f1a66db9a994bbc11073_cryptolocker

  • Size

    100KB

  • Sample

    240213-v1vn5adh2v

  • MD5

    12e2d1c2de65f1a66db9a994bbc11073

  • SHA1

    744fe16869010e5f75597d50a0dcfaf1032ef6df

  • SHA256

    9fce5ed461e08244f19d0218dd19aa1fa606a32fe4ec9061113e4f4fa2d2a591

  • SHA512

    6e02e9c28a0a8a7093bbccd2853eb32959fc971ca0851ed771495d40304b325ee5871dc28d79f78ccc2f765dfe1edb7b75e4710281f6661667f6b27cdd05fc1b

  • SSDEEP

    768:XS5nQJ24LR1bytOOtEvwDpjNbZ7uyA36S7MpxRiWjzUNu5tZ:i5nkFGMOtEvwDpjNbwQEIikgNyZ

Score
10/10

Malware Config

Targets

    • Target

      2024-02-13_12e2d1c2de65f1a66db9a994bbc11073_cryptolocker

    • Size

      100KB

    • MD5

      12e2d1c2de65f1a66db9a994bbc11073

    • SHA1

      744fe16869010e5f75597d50a0dcfaf1032ef6df

    • SHA256

      9fce5ed461e08244f19d0218dd19aa1fa606a32fe4ec9061113e4f4fa2d2a591

    • SHA512

      6e02e9c28a0a8a7093bbccd2853eb32959fc971ca0851ed771495d40304b325ee5871dc28d79f78ccc2f765dfe1edb7b75e4710281f6661667f6b27cdd05fc1b

    • SSDEEP

      768:XS5nQJ24LR1bytOOtEvwDpjNbZ7uyA36S7MpxRiWjzUNu5tZ:i5nkFGMOtEvwDpjNbwQEIikgNyZ

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks