General

  • Target

    2024-02-29_73c794c28b833932eaa17ed10c0a0010_cryptolocker

  • Size

    119KB

  • Sample

    240229-fnt5haea41

  • MD5

    73c794c28b833932eaa17ed10c0a0010

  • SHA1

    3dcdae92e95277c23483366e997c47b9759b2558

  • SHA256

    8a0f26502cfbd38dcd0fc80feb2dfd85b33d324a049108faaa16a5ef04e22c57

  • SHA512

    e65cacf9cbb2acc9729f5f0714cdd62de068ca47aea311de812e8fa2c2e0c014e79f242332475d22af8d30d11f0f2123c942972e25581cc83fab950140cad765

  • SSDEEP

    1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfIuBKLUSB:vCjsIOtEvwDpj5H9YvQd26

Score
10/10

Malware Config

Targets

    • Target

      2024-02-29_73c794c28b833932eaa17ed10c0a0010_cryptolocker

    • Size

      119KB

    • MD5

      73c794c28b833932eaa17ed10c0a0010

    • SHA1

      3dcdae92e95277c23483366e997c47b9759b2558

    • SHA256

      8a0f26502cfbd38dcd0fc80feb2dfd85b33d324a049108faaa16a5ef04e22c57

    • SHA512

      e65cacf9cbb2acc9729f5f0714cdd62de068ca47aea311de812e8fa2c2e0c014e79f242332475d22af8d30d11f0f2123c942972e25581cc83fab950140cad765

    • SSDEEP

      1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfIuBKLUSB:vCjsIOtEvwDpj5H9YvQd26

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks