Overview

overview

10

Static

static

10

2024-03-19...er.exe

windows7-x64

9

2024-03-19...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-03-19_8a4369b451873275b7cb07d2284e40fc_cryptolocker

  • Size

    101KB

  • Sample

    240319-1e1k5sgh3v

  • MD5

    8a4369b451873275b7cb07d2284e40fc

  • SHA1

    183f2eb571f9388700f532542932c4390efa5297

  • SHA256

    cee5bfa4b7437a29b613d8362739e0d28fb771ca3e700d5e6c13b0cf455af7b5

  • SHA512

    bee9e6a27f79299801e483377f57c07e9b5562f018c7a63ba88ef503dc4e3a5c634f7f652c8e6800ada8190e35b2dbb4c36136359a2e46db4f97ec66061651fc

  • SSDEEP

    768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJHlv/k2wSdc:xj+VGMOtEvwDpjubwQEIiVmkxv/g

Score
10/10

Malware Config

Targets

    • Target

      2024-03-19_8a4369b451873275b7cb07d2284e40fc_cryptolocker

    • Size

      101KB

    • MD5

      8a4369b451873275b7cb07d2284e40fc

    • SHA1

      183f2eb571f9388700f532542932c4390efa5297

    • SHA256

      cee5bfa4b7437a29b613d8362739e0d28fb771ca3e700d5e6c13b0cf455af7b5

    • SHA512

      bee9e6a27f79299801e483377f57c07e9b5562f018c7a63ba88ef503dc4e3a5c634f7f652c8e6800ada8190e35b2dbb4c36136359a2e46db4f97ec66061651fc

    • SSDEEP

      768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJHlv/k2wSdc:xj+VGMOtEvwDpjubwQEIiVmkxv/g

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks