Overview

overview

10

Static

static

10

2024-02-27...er.exe

windows7-x64

9

2024-02-27...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-02-27_6029c9e4c9b6a503dc029c227a5d89d6_cryptolocker

  • Size

    94KB

  • Sample

    240227-s2wxgacg55

  • MD5

    6029c9e4c9b6a503dc029c227a5d89d6

  • SHA1

    d58f18249f6f4e97a0c4d977aa18981477c2593e

  • SHA256

    b271cb05de91a88c57e3f47f8edcb99ca79025cff61813ea08d7a34a91ceeff4

  • SHA512

    3ed45e7eb785c02a2973f29640869d534092cd66f9f65a8728550b5e5252bb6a6bde5c8fac1f66e5b26326d0536b6aa2968e4c0e180403ba6b66a40c62016183

  • SSDEEP

    768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJ3d:xj+VGMOtEvwDpjubwQEIiVmk5

Score
10/10

Malware Config

Targets

    • Target

      2024-02-27_6029c9e4c9b6a503dc029c227a5d89d6_cryptolocker

    • Size

      94KB

    • MD5

      6029c9e4c9b6a503dc029c227a5d89d6

    • SHA1

      d58f18249f6f4e97a0c4d977aa18981477c2593e

    • SHA256

      b271cb05de91a88c57e3f47f8edcb99ca79025cff61813ea08d7a34a91ceeff4

    • SHA512

      3ed45e7eb785c02a2973f29640869d534092cd66f9f65a8728550b5e5252bb6a6bde5c8fac1f66e5b26326d0536b6aa2968e4c0e180403ba6b66a40c62016183

    • SSDEEP

      768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJ3d:xj+VGMOtEvwDpjubwQEIiVmk5

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks