Overview

overview

10

Static

static

10

2024-02-23...er.exe

windows7-x64

9

2024-02-23...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-02-23_85e613403f623a89ce948f66082a9474_cryptolocker

  • Size

    46KB

  • Sample

    240223-hkrlbade65

  • MD5

    85e613403f623a89ce948f66082a9474

  • SHA1

    672d52a2b68c5c9f29a367422481b51f55081557

  • SHA256

    76f87c3cb1697a1f772e0234444adaad1ce09a370c3ff2a0c090081a6b668c32

  • SHA512

    969dc5a27fc915aa1644827bbf63cedc8956f87fcbc8087b3843a9318bfcdd6c60a7ede9b8364901aca9df2d6899472c1c6f114f1c4827e534931a634eff0c20

  • SSDEEP

    768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLtldtb:xj+VGMOtEvwDpjk/tb

Score
10/10

Malware Config

Targets

    • Target

      2024-02-23_85e613403f623a89ce948f66082a9474_cryptolocker

    • Size

      46KB

    • MD5

      85e613403f623a89ce948f66082a9474

    • SHA1

      672d52a2b68c5c9f29a367422481b51f55081557

    • SHA256

      76f87c3cb1697a1f772e0234444adaad1ce09a370c3ff2a0c090081a6b668c32

    • SHA512

      969dc5a27fc915aa1644827bbf63cedc8956f87fcbc8087b3843a9318bfcdd6c60a7ede9b8364901aca9df2d6899472c1c6f114f1c4827e534931a634eff0c20

    • SSDEEP

      768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLtldtb:xj+VGMOtEvwDpjk/tb

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks