Overview

overview

10

Static

static

10

2024-03-28...er.exe

windows7-x64

9

2024-03-28...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-03-28_0e9fa819d30c3e152af3bc1a19a317ec_cryptolocker

  • Size

    101KB

  • Sample

    240328-le1tksfb35

  • MD5

    0e9fa819d30c3e152af3bc1a19a317ec

  • SHA1

    ade75383631bb6bbdbd42a2d07b56ed26f8011a8

  • SHA256

    5011a59962f96a26955949d2b049332da72f809b3ddc2466767467710143a378

  • SHA512

    7dcb4066c4e73511821bce035531b7b3d3166878f2f179ad96a5cd4141b87daf4fc5c94c5017032d1b736b81f58eedd9e7130964f6a99135128c94aedd0d95a8

  • SSDEEP

    768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJHlv/k2wSsr:xj+VGMOtEvwDpjubwQEIiVmkxv/Gr

Score
10/10

Malware Config

Targets

    • Target

      2024-03-28_0e9fa819d30c3e152af3bc1a19a317ec_cryptolocker

    • Size

      101KB

    • MD5

      0e9fa819d30c3e152af3bc1a19a317ec

    • SHA1

      ade75383631bb6bbdbd42a2d07b56ed26f8011a8

    • SHA256

      5011a59962f96a26955949d2b049332da72f809b3ddc2466767467710143a378

    • SHA512

      7dcb4066c4e73511821bce035531b7b3d3166878f2f179ad96a5cd4141b87daf4fc5c94c5017032d1b736b81f58eedd9e7130964f6a99135128c94aedd0d95a8

    • SSDEEP

      768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJHlv/k2wSsr:xj+VGMOtEvwDpjubwQEIiVmkxv/Gr

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks