Overview

overview

10

Static

static

10

2024-02-27...er.exe

windows7-x64

9

2024-02-27...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-02-27_31edead8a865ef514f7bfeac7a51af84_cryptolocker

  • Size

    99KB

  • Sample

    240227-w6ds8sge5x

  • MD5

    31edead8a865ef514f7bfeac7a51af84

  • SHA1

    864335820ef5cafb20ef46b139e3d300cf11ec36

  • SHA256

    4e5c53788623260a80b22911486f6d28f7b07f5ccdd360518af9f1bf03433999

  • SHA512

    b768e43f6d816bd4e88eaa39f1e6b9e5aacac08aaa5bb596f80c4496b914ec8f039d441a0edb39ef8db7afdbb3c2eea9618f26bd01485ce723e7f31a57bf90c0

  • SSDEEP

    768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJHlv/k2OY3:xj+VGMOtEvwDpjubwQEIiVmkxv/CY3

Score
10/10

Malware Config

Targets

    • Target

      2024-02-27_31edead8a865ef514f7bfeac7a51af84_cryptolocker

    • Size

      99KB

    • MD5

      31edead8a865ef514f7bfeac7a51af84

    • SHA1

      864335820ef5cafb20ef46b139e3d300cf11ec36

    • SHA256

      4e5c53788623260a80b22911486f6d28f7b07f5ccdd360518af9f1bf03433999

    • SHA512

      b768e43f6d816bd4e88eaa39f1e6b9e5aacac08aaa5bb596f80c4496b914ec8f039d441a0edb39ef8db7afdbb3c2eea9618f26bd01485ce723e7f31a57bf90c0

    • SSDEEP

      768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJHlv/k2OY3:xj+VGMOtEvwDpjubwQEIiVmkxv/CY3

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks