Overview

overview

10

Static

static

10

2024-02-18...er.exe

windows7-x64

9

2024-02-18...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-02-18_0a895339ba3a4f308c7d28ccc517ba51_cryptolocker

  • Size

    61KB

  • Sample

    240218-e1p6msec25

  • MD5

    0a895339ba3a4f308c7d28ccc517ba51

  • SHA1

    8b6f61abbe29449177b7c8c9fbf3f234027c366c

  • SHA256

    82c48e2921b1f9e085b3aa6200d55901d11feb306772ff18adab200e099d9f25

  • SHA512

    d4138105f5c75da4276a10fb744902ebe310675701761f9cda3eff650416256088be6e2a82af1edc1425911a3d63606528f6ff57ec6baa1439cc71e0d17381ea

  • SSDEEP

    768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZgBh8i6g7GoFwDJ6:xj+VGMOtEvwDpjubEgywM

Score
10/10

Malware Config

Targets

    • Target

      2024-02-18_0a895339ba3a4f308c7d28ccc517ba51_cryptolocker

    • Size

      61KB

    • MD5

      0a895339ba3a4f308c7d28ccc517ba51

    • SHA1

      8b6f61abbe29449177b7c8c9fbf3f234027c366c

    • SHA256

      82c48e2921b1f9e085b3aa6200d55901d11feb306772ff18adab200e099d9f25

    • SHA512

      d4138105f5c75da4276a10fb744902ebe310675701761f9cda3eff650416256088be6e2a82af1edc1425911a3d63606528f6ff57ec6baa1439cc71e0d17381ea

    • SSDEEP

      768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZgBh8i6g7GoFwDJ6:xj+VGMOtEvwDpjubEgywM

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks