Overview

overview

10

Static

static

10

2024-02-25...er.exe

windows7-x64

9

2024-02-25...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-02-25_904c9c250432c7f02b9ec2c2298f8bd8_cryptolocker

  • Size

    85KB

  • Sample

    240225-qx9lnadg21

  • MD5

    904c9c250432c7f02b9ec2c2298f8bd8

  • SHA1

    bee44ac20e263841fabbe119aa5aad9d480288bf

  • SHA256

    45f0e607d56ba1e2e456bfe2b1057b2f8833cddd660ed58d72dd8b44e2f7e230

  • SHA512

    bf3116e825190b3e12aa53b9fdaf928f24a0673bf7373e63be957580fdc24cfaa179ed33265d9657eb007c53cb2b3bbe8ff903a06460b6bd5289456327c2c10e

  • SSDEEP

    768:XS5nQJ24LR1bytOOtEvwDpjNbZ7uyA36S7MpxRXrZSUfFKazNclMjNUvxoR:i5nkFGMOtEvwDpjNbwQEI8UtzNcO8uR

Score
10/10

Malware Config

Targets

    • Target

      2024-02-25_904c9c250432c7f02b9ec2c2298f8bd8_cryptolocker

    • Size

      85KB

    • MD5

      904c9c250432c7f02b9ec2c2298f8bd8

    • SHA1

      bee44ac20e263841fabbe119aa5aad9d480288bf

    • SHA256

      45f0e607d56ba1e2e456bfe2b1057b2f8833cddd660ed58d72dd8b44e2f7e230

    • SHA512

      bf3116e825190b3e12aa53b9fdaf928f24a0673bf7373e63be957580fdc24cfaa179ed33265d9657eb007c53cb2b3bbe8ff903a06460b6bd5289456327c2c10e

    • SSDEEP

      768:XS5nQJ24LR1bytOOtEvwDpjNbZ7uyA36S7MpxRXrZSUfFKazNclMjNUvxoR:i5nkFGMOtEvwDpjNbwQEI8UtzNcO8uR

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks