General

  • Target

    2024-04-29_5b42bc4efe0067aa860dd469ba6291e5_cryptolocker

  • Size

    43KB

  • Sample

    240429-f5584abg35

  • MD5

    5b42bc4efe0067aa860dd469ba6291e5

  • SHA1

    89f78f655e14385078cfe0f8e545cf5ee8d0abee

  • SHA256

    9e3d9313af4007202ca124e59a057850aa3131853de5f979ba47d54511422fe3

  • SHA512

    2f8214527c9bf38cd59ed54b0b0ece336713a71af2e3e617f070c51308f19ff7fff43de2c8ad1e331fddaf442b733ef1348c1b8bf38a64a91ff4b50b40a7aa4c

  • SSDEEP

    768:b7o/2n1TCraU6GD1a4X0WcO+wMVm+slAMphqp:bc/y2lkF0+Beqp

Score
10/10

Malware Config

Targets

    • Target

      2024-04-29_5b42bc4efe0067aa860dd469ba6291e5_cryptolocker

    • Size

      43KB

    • MD5

      5b42bc4efe0067aa860dd469ba6291e5

    • SHA1

      89f78f655e14385078cfe0f8e545cf5ee8d0abee

    • SHA256

      9e3d9313af4007202ca124e59a057850aa3131853de5f979ba47d54511422fe3

    • SHA512

      2f8214527c9bf38cd59ed54b0b0ece336713a71af2e3e617f070c51308f19ff7fff43de2c8ad1e331fddaf442b733ef1348c1b8bf38a64a91ff4b50b40a7aa4c

    • SSDEEP

      768:b7o/2n1TCraU6GD1a4X0WcO+wMVm+slAMphqp:bc/y2lkF0+Beqp

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks