Overview

overview

10

Static

static

10

2024-02-19...er.exe

windows7-x64

9

2024-02-19...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-02-19_a12333a8c99625a5d621601839e5184a_cryptolocker

  • Size

    63KB

  • Sample

    240219-b5ptwsgh77

  • MD5

    a12333a8c99625a5d621601839e5184a

  • SHA1

    4dd070a932bf3d8d422ea355dc5fbaed4b88fe78

  • SHA256

    6da1f568895970363a92348b8b44c4c70991873c4c24dbbe83c68b548e0d59eb

  • SHA512

    4e42b508c47eb609fe6c65eae4b520deb92e8c672a6cc13763b3699f316e78eff4ca353b9382e911043027fe24403a4a27db1ba9eeff7735ebf7bd7e8a204877

  • SSDEEP

    768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I52kGEO10KmH:6j+1NMOtEvwDpjr8ox8UDEy0KmH

Score
10/10

Malware Config

Targets

    • Target

      2024-02-19_a12333a8c99625a5d621601839e5184a_cryptolocker

    • Size

      63KB

    • MD5

      a12333a8c99625a5d621601839e5184a

    • SHA1

      4dd070a932bf3d8d422ea355dc5fbaed4b88fe78

    • SHA256

      6da1f568895970363a92348b8b44c4c70991873c4c24dbbe83c68b548e0d59eb

    • SHA512

      4e42b508c47eb609fe6c65eae4b520deb92e8c672a6cc13763b3699f316e78eff4ca353b9382e911043027fe24403a4a27db1ba9eeff7735ebf7bd7e8a204877

    • SSDEEP

      768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I52kGEO10KmH:6j+1NMOtEvwDpjr8ox8UDEy0KmH

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks