Overview

overview

10

Static

static

10

2024-04-15...er.exe

windows7-x64

9

2024-04-15...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-04-15_af2fb6b10501b9e831c1e23c08d24d0a_cryptolocker

  • Size

    101KB

  • Sample

    240415-zptpxaac3v

  • MD5

    af2fb6b10501b9e831c1e23c08d24d0a

  • SHA1

    aa61ed65bc8a2a9a2e23361ebd1766cbb50dd725

  • SHA256

    def39dea59203af9c6701d3597835d1bcdaac05cfa29a438aea37ec842ae1b33

  • SHA512

    da492bf3c2d8d08c9528a542d8b55729a9e14969777fb5c4719a464ee8c15daa42ac862086431c5e5c010a285801c0c7ea148ae8e7b13a3f97d2380669fb5283

  • SSDEEP

    768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJHlv/k2yO3x6:xj+VGMOtEvwDpjubwQEIiVmkxv/ur

Score
10/10

Malware Config

Targets

    • Target

      2024-04-15_af2fb6b10501b9e831c1e23c08d24d0a_cryptolocker

    • Size

      101KB

    • MD5

      af2fb6b10501b9e831c1e23c08d24d0a

    • SHA1

      aa61ed65bc8a2a9a2e23361ebd1766cbb50dd725

    • SHA256

      def39dea59203af9c6701d3597835d1bcdaac05cfa29a438aea37ec842ae1b33

    • SHA512

      da492bf3c2d8d08c9528a542d8b55729a9e14969777fb5c4719a464ee8c15daa42ac862086431c5e5c010a285801c0c7ea148ae8e7b13a3f97d2380669fb5283

    • SSDEEP

      768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJHlv/k2yO3x6:xj+VGMOtEvwDpjubwQEIiVmkxv/ur

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks