Overview

overview

10

Static

static

10

2024-02-14...er.exe

windows7-x64

9

2024-02-14...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-02-14_bc8c01288a10ab43710a5c30c976c64f_cryptolocker

  • Size

    63KB

  • Sample

    240214-v2zdpsgh2v

  • MD5

    bc8c01288a10ab43710a5c30c976c64f

  • SHA1

    42c5cb7080e4bcfa8a6b590c0e0166bf2e0e4196

  • SHA256

    c66456ff59c78ae8b6e725c1d2e80534665fb3c054a9e235eae8d01d153644fc

  • SHA512

    ca77ab4048a1d7e825fe70d8fe1056072179f2117fe38b1fbfd3e05ea850d0be2d1a89070291394316bc2f6372969be16176b04eb1afd21ccb284935025e2e7e

  • SSDEEP

    768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I52kGEO10Km9q:6j+1NMOtEvwDpjr8ox8UDEy0Kms

Score
10/10

Malware Config

Targets

    • Target

      2024-02-14_bc8c01288a10ab43710a5c30c976c64f_cryptolocker

    • Size

      63KB

    • MD5

      bc8c01288a10ab43710a5c30c976c64f

    • SHA1

      42c5cb7080e4bcfa8a6b590c0e0166bf2e0e4196

    • SHA256

      c66456ff59c78ae8b6e725c1d2e80534665fb3c054a9e235eae8d01d153644fc

    • SHA512

      ca77ab4048a1d7e825fe70d8fe1056072179f2117fe38b1fbfd3e05ea850d0be2d1a89070291394316bc2f6372969be16176b04eb1afd21ccb284935025e2e7e

    • SSDEEP

      768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I52kGEO10Km9q:6j+1NMOtEvwDpjr8ox8UDEy0Kms

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks