Overview

overview

10

Static

static

10

2024-02-21...er.exe

windows7-x64

9

2024-02-21...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-02-21_eef8413904b4c88daa2f2b7f111ccc16_cryptolocker

  • Size

    85KB

  • Sample

    240221-vgll4scb26

  • MD5

    eef8413904b4c88daa2f2b7f111ccc16

  • SHA1

    728522976a3d6b6f6ef84f7e3e152aa9811d398f

  • SHA256

    0bdc3f141382404a1a054fbb770cabe0e24148b9b2c02842d8eba9ba368af7ff

  • SHA512

    5a4dd2e9771084ed660df7e92e1951e50594e9e94da04b29d115c5638f38ef545fcfc635f54c82f82ba52c06dd5217371ec0378ec62b2654674306fc74c76fa4

  • SSDEEP

    768:XS5nQJ24LR1bytOOtEvwDpjNbZ7uyA36S7MpxRXrZSUfFKazNclMjNUvxpRZd:i5nkFGMOtEvwDpjNbwQEI8UtzNcO8d

Score
10/10

Malware Config

Targets

    • Target

      2024-02-21_eef8413904b4c88daa2f2b7f111ccc16_cryptolocker

    • Size

      85KB

    • MD5

      eef8413904b4c88daa2f2b7f111ccc16

    • SHA1

      728522976a3d6b6f6ef84f7e3e152aa9811d398f

    • SHA256

      0bdc3f141382404a1a054fbb770cabe0e24148b9b2c02842d8eba9ba368af7ff

    • SHA512

      5a4dd2e9771084ed660df7e92e1951e50594e9e94da04b29d115c5638f38ef545fcfc635f54c82f82ba52c06dd5217371ec0378ec62b2654674306fc74c76fa4

    • SSDEEP

      768:XS5nQJ24LR1bytOOtEvwDpjNbZ7uyA36S7MpxRXrZSUfFKazNclMjNUvxpRZd:i5nkFGMOtEvwDpjNbwQEI8UtzNcO8d

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks