Overview

overview

10

Static

static

10

2024-02-17...er.exe

windows7-x64

9

2024-02-17...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-02-17_ff060947d6ae1a0d8cd5ac4ff00d9d77_cryptolocker

  • Size

    47KB

  • Sample

    240217-ge8rzacc95

  • MD5

    ff060947d6ae1a0d8cd5ac4ff00d9d77

  • SHA1

    107430f193dbc85988713e5d6bdb10dd6672ce2c

  • SHA256

    6b4d95cb045f393f4573e40405b2a39ae865d31de911b6bf35ae67071ce42995

  • SHA512

    798a877c9faa8dd240ed832d11778a18be43ca43a5f1ebd7a1fb448b55fc92a5981db6c03081b9ed3da1fa0f916cd2156aebdfc7efb5c86a74e1d19651475a82

  • SSDEEP

    384:icX+ni9VCr5nQI021q4VQBqURYp055TOtOOtEvwDpjqIGR/hHi7/OlI0G/7Ioqbn:XS5nQJ24LR1bytOOtEvwDpjNbP/Moqbn

Score
10/10

Malware Config

Targets

    • Target

      2024-02-17_ff060947d6ae1a0d8cd5ac4ff00d9d77_cryptolocker

    • Size

      47KB

    • MD5

      ff060947d6ae1a0d8cd5ac4ff00d9d77

    • SHA1

      107430f193dbc85988713e5d6bdb10dd6672ce2c

    • SHA256

      6b4d95cb045f393f4573e40405b2a39ae865d31de911b6bf35ae67071ce42995

    • SHA512

      798a877c9faa8dd240ed832d11778a18be43ca43a5f1ebd7a1fb448b55fc92a5981db6c03081b9ed3da1fa0f916cd2156aebdfc7efb5c86a74e1d19651475a82

    • SSDEEP

      384:icX+ni9VCr5nQI021q4VQBqURYp055TOtOOtEvwDpjqIGR/hHi7/OlI0G/7Ioqbn:XS5nQJ24LR1bytOOtEvwDpjNbP/Moqbn

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks