Overview

overview

10

Static

static

10

2024-03-05...er.exe

windows7-x64

9

2024-03-05...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-03-05_d7a075045106632ef1d13156dcecfcfe_cryptolocker

  • Size

    64KB

  • Sample

    240305-gysj4ahc42

  • MD5

    d7a075045106632ef1d13156dcecfcfe

  • SHA1

    3f829323262b06d32c7ba68db60f032d7f14b7b4

  • SHA256

    47ff2a3ada78435884786d2adb36b6e15a1831ce85ed546eb3d9fe480be8105c

  • SHA512

    81284e8e567c2ee69531378ccc85c4f04f0ce942e26402ea94f7ba7d26d163b267d2379144bc9ff95f4e9bc567a7e45cfb7879c44b7e4609452f79622450ce6d

  • SSDEEP

    768:XS5nQJ24LR1bytOOtEvwDpjNbZ7uyA36S7MpxRXrZSUG:i5nkFGMOtEvwDpjNbwQEI8UG

Score
10/10

Malware Config

Targets

    • Target

      2024-03-05_d7a075045106632ef1d13156dcecfcfe_cryptolocker

    • Size

      64KB

    • MD5

      d7a075045106632ef1d13156dcecfcfe

    • SHA1

      3f829323262b06d32c7ba68db60f032d7f14b7b4

    • SHA256

      47ff2a3ada78435884786d2adb36b6e15a1831ce85ed546eb3d9fe480be8105c

    • SHA512

      81284e8e567c2ee69531378ccc85c4f04f0ce942e26402ea94f7ba7d26d163b267d2379144bc9ff95f4e9bc567a7e45cfb7879c44b7e4609452f79622450ce6d

    • SSDEEP

      768:XS5nQJ24LR1bytOOtEvwDpjNbZ7uyA36S7MpxRXrZSUG:i5nkFGMOtEvwDpjNbwQEI8UG

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks