Overview

overview

10

Static

static

10

2024-03-18...er.exe

windows7-x64

9

2024-03-18...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-03-18_a8f57d13c7dbdfeb183f4de9a901d776_cryptolocker

  • Size

    39KB

  • Sample

    240318-2khg7abb26

  • MD5

    a8f57d13c7dbdfeb183f4de9a901d776

  • SHA1

    1409213b2a4599e49ab9cb19e085691e40e2202c

  • SHA256

    261c0b5e44105747fbf4edc49469bb99dab7d268ab4011a0deb9ed0b8e1703c9

  • SHA512

    3e07706fef219935a7ba9e5117643e55dfb4bae51cd2507b1bee8f076c12f5290cf68d16d34c17379786aaac45c4d1e1be07a7b2a68469940ec640656981b738

  • SSDEEP

    384:60VkMq01bJ3wtEwPS8HLEh+Jagz+3be+26aIIcVRYpetOOtEvwDpjqIGRmdHzOOf:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6F

Score
10/10

Malware Config

Targets

    • Target

      2024-03-18_a8f57d13c7dbdfeb183f4de9a901d776_cryptolocker

    • Size

      39KB

    • MD5

      a8f57d13c7dbdfeb183f4de9a901d776

    • SHA1

      1409213b2a4599e49ab9cb19e085691e40e2202c

    • SHA256

      261c0b5e44105747fbf4edc49469bb99dab7d268ab4011a0deb9ed0b8e1703c9

    • SHA512

      3e07706fef219935a7ba9e5117643e55dfb4bae51cd2507b1bee8f076c12f5290cf68d16d34c17379786aaac45c4d1e1be07a7b2a68469940ec640656981b738

    • SSDEEP

      384:60VkMq01bJ3wtEwPS8HLEh+Jagz+3be+26aIIcVRYpetOOtEvwDpjqIGRmdHzOOf:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6F

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks