Overview

overview

10

Static

static

10

2024-03-14...er.exe

windows7-x64

9

2024-03-14...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-03-14_160392aa76ea6a2bfbca00fe0af51b6a_cryptolocker

  • Size

    54KB

  • Sample

    240314-f6kc1sbf4z

  • MD5

    160392aa76ea6a2bfbca00fe0af51b6a

  • SHA1

    7b84c9102389611d22fdf59f71530f077b15b002

  • SHA256

    8d4ada264717a08cad9d56f8a58d503e0fdcd85709621feda64e11daf9b6e41e

  • SHA512

    a094be48ab540799ab13a322ee7fb8cf65051f3bf46a52fc6432235206b8e2296aa10f58e6a91d3e34f7177d9ff8f01c1e28e1478777dbffb7912be0a0995809

  • SSDEEP

    768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5QJz7/ev:6j+1NMOtEvwDpjr8oxExev

Score
10/10

Malware Config

Targets

    • Target

      2024-03-14_160392aa76ea6a2bfbca00fe0af51b6a_cryptolocker

    • Size

      54KB

    • MD5

      160392aa76ea6a2bfbca00fe0af51b6a

    • SHA1

      7b84c9102389611d22fdf59f71530f077b15b002

    • SHA256

      8d4ada264717a08cad9d56f8a58d503e0fdcd85709621feda64e11daf9b6e41e

    • SHA512

      a094be48ab540799ab13a322ee7fb8cf65051f3bf46a52fc6432235206b8e2296aa10f58e6a91d3e34f7177d9ff8f01c1e28e1478777dbffb7912be0a0995809

    • SSDEEP

      768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5QJz7/ev:6j+1NMOtEvwDpjr8oxExev

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks