Overview

overview

10

Static

static

10

2024-05-11...er.exe

windows7-x64

9

2024-05-11...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-11_a112c39eff3d00d371496151283634a5_cryptolocker

  • Size

    68KB

  • Sample

    240511-g26k5aaa9t

  • MD5

    a112c39eff3d00d371496151283634a5

  • SHA1

    b1bfe54051f3acd0e5520958d09e4401b4badb01

  • SHA256

    8e5e3cb4a4aa0615651ce3f58f7b0c7d4ce4f4cf7da8fca7939e1c3ef86f3793

  • SHA512

    f6c793fc0542bee97d8203d542c9cdcbe400546ccc31f9e722677d55a9afb520989f456c27750aa24f35b50c5424d32a63d23294f7501594c65d4ac6bb198440

  • SSDEEP

    768:XS5nQJ24LR1bytOOtEvwDpjNbZ7uyA36S7MpxRXrZSUNsYD/n:i5nkFGMOtEvwDpjNbwQEI8UZDf

Score
10/10

Malware Config

Targets

    • Target

      2024-05-11_a112c39eff3d00d371496151283634a5_cryptolocker

    • Size

      68KB

    • MD5

      a112c39eff3d00d371496151283634a5

    • SHA1

      b1bfe54051f3acd0e5520958d09e4401b4badb01

    • SHA256

      8e5e3cb4a4aa0615651ce3f58f7b0c7d4ce4f4cf7da8fca7939e1c3ef86f3793

    • SHA512

      f6c793fc0542bee97d8203d542c9cdcbe400546ccc31f9e722677d55a9afb520989f456c27750aa24f35b50c5424d32a63d23294f7501594c65d4ac6bb198440

    • SSDEEP

      768:XS5nQJ24LR1bytOOtEvwDpjNbZ7uyA36S7MpxRXrZSUNsYD/n:i5nkFGMOtEvwDpjNbwQEI8UZDf

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks