Overview

overview

10

Static

static

10

2024-02-28...er.exe

windows7-x64

9

2024-02-28...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-02-28_ce72c5a7c4a97cebecdef7cd72048c97_cryptolocker

  • Size

    86KB

  • Sample

    240228-lzfn5sgg71

  • MD5

    ce72c5a7c4a97cebecdef7cd72048c97

  • SHA1

    7107b88c092d41c2d9cca66e6513fd698ea51a55

  • SHA256

    a72f5df1731f1e04c4399100a37f044cf47aafe41cddb30169d2e3819b137645

  • SHA512

    01104ba4e8b24f8dde13fd4a741261ea382803137833a74e84a541ca7a503dab80bf6ccdf3b70d425e530fee0e67502aa9bef023ec6e4c9728f72801e7ec0712

  • SSDEEP

    768:XS5nQJ24LR1bytOOtEvwDpjNbZ7uyA36S7MpxRXrZSUfFKazNclMjNUvxgna:i5nkFGMOtEvwDpjNbwQEI8UtzNcO8ya

Score
10/10

Malware Config

Targets

    • Target

      2024-02-28_ce72c5a7c4a97cebecdef7cd72048c97_cryptolocker

    • Size

      86KB

    • MD5

      ce72c5a7c4a97cebecdef7cd72048c97

    • SHA1

      7107b88c092d41c2d9cca66e6513fd698ea51a55

    • SHA256

      a72f5df1731f1e04c4399100a37f044cf47aafe41cddb30169d2e3819b137645

    • SHA512

      01104ba4e8b24f8dde13fd4a741261ea382803137833a74e84a541ca7a503dab80bf6ccdf3b70d425e530fee0e67502aa9bef023ec6e4c9728f72801e7ec0712

    • SSDEEP

      768:XS5nQJ24LR1bytOOtEvwDpjNbZ7uyA36S7MpxRXrZSUfFKazNclMjNUvxgna:i5nkFGMOtEvwDpjNbwQEI8UtzNcO8ya

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks