Overview

overview

10

Static

static

10

2024-05-15...er.exe

windows7-x64

9

2024-05-15...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-05-15_823462c2bfe895e137e5ae37a7c97fe2_cryptolocker

  • Size

    48KB

  • Sample

    240515-by2j4sbb73

  • MD5

    823462c2bfe895e137e5ae37a7c97fe2

  • SHA1

    7d84ce306004d07a65c5d165853e1f6ee0533e58

  • SHA256

    6fd870c4ec919bed97397845b92fb78678c89326f4af5fd2ec5b1ef857a3395b

  • SHA512

    200d8d859df377b74de76b8a709bc1f3c02f1795104547e877b9e7249dbead3f8b49cf29d3d3de3ee9145d0b44b430062a16033dce56fb9131fee612db7f93b2

  • SSDEEP

    768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLbjG9RzhwaRh+EpS:xj+VGMOtEvwDpjy+TRh+E4

Score
10/10

Malware Config

Targets

    • Target

      2024-05-15_823462c2bfe895e137e5ae37a7c97fe2_cryptolocker

    • Size

      48KB

    • MD5

      823462c2bfe895e137e5ae37a7c97fe2

    • SHA1

      7d84ce306004d07a65c5d165853e1f6ee0533e58

    • SHA256

      6fd870c4ec919bed97397845b92fb78678c89326f4af5fd2ec5b1ef857a3395b

    • SHA512

      200d8d859df377b74de76b8a709bc1f3c02f1795104547e877b9e7249dbead3f8b49cf29d3d3de3ee9145d0b44b430062a16033dce56fb9131fee612db7f93b2

    • SSDEEP

      768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLbjG9RzhwaRh+EpS:xj+VGMOtEvwDpjy+TRh+E4

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks