Overview

overview

10

Static

static

10

2024-03-15...er.exe

windows7-x64

9

2024-03-15...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-03-15_347830a37bfa294327a5264c3e0f98d5_cryptolocker

  • Size

    100KB

  • Sample

    240315-s8hy7acc6t

  • MD5

    347830a37bfa294327a5264c3e0f98d5

  • SHA1

    1021c0c768b47a5b666696228a566824c954d00a

  • SHA256

    b88b3922f488a784cde42791f8a545ff10d6bd3745e31ab24121f861de6a0482

  • SHA512

    f43d92fe3497cd2a50b858cb95c5fc54f46f0c692d796e8ef5d222aa986c3760be26b39c4f51665168c0224d3de42d742746f0260027c747a1b144717d6bf29c

  • SSDEEP

    768:XS5nQJ24LR1bytOOtEvwDpjNbZ7uyA36S7MpxRiWjz/66E:i5nkFGMOtEvwDpjNbwQEIikrU

Score
10/10

Malware Config

Targets

    • Target

      2024-03-15_347830a37bfa294327a5264c3e0f98d5_cryptolocker

    • Size

      100KB

    • MD5

      347830a37bfa294327a5264c3e0f98d5

    • SHA1

      1021c0c768b47a5b666696228a566824c954d00a

    • SHA256

      b88b3922f488a784cde42791f8a545ff10d6bd3745e31ab24121f861de6a0482

    • SHA512

      f43d92fe3497cd2a50b858cb95c5fc54f46f0c692d796e8ef5d222aa986c3760be26b39c4f51665168c0224d3de42d742746f0260027c747a1b144717d6bf29c

    • SSDEEP

      768:XS5nQJ24LR1bytOOtEvwDpjNbZ7uyA36S7MpxRiWjz/66E:i5nkFGMOtEvwDpjNbwQEIikrU

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks