Overview

overview

10

Static

static

10

2024-05-21...er.exe

windows7-x64

9

2024-05-21...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-05-21_140851eb8b489a98b18f2bb88a99d6fd_cryptolocker

  • Size

    42KB

  • Sample

    240521-s4y5lsag8y

  • MD5

    140851eb8b489a98b18f2bb88a99d6fd

  • SHA1

    9cfa8df3b0bd73f3e9f3d902c0e6916f2625cdd4

  • SHA256

    51a27ae7329b45a45d56d065900268013e6e4184248cf4807e1d39b124ca8bd7

  • SHA512

    8a59ce460a181f00330dd98813665f0a2aecc52ca1e98c2f1cec6cb34798516bc70860cc918583902dd38eb293b1fcef74317bd119b6720707bdc9694ec7694a

  • SSDEEP

    768:TS5nQJ24LR7tOOtEvwDpjGqPhqlcnvgpnY1n9R:m5nkFNMOtEvwDpjG8hgpY19R

Score
10/10

Malware Config

Targets

    • Target

      2024-05-21_140851eb8b489a98b18f2bb88a99d6fd_cryptolocker

    • Size

      42KB

    • MD5

      140851eb8b489a98b18f2bb88a99d6fd

    • SHA1

      9cfa8df3b0bd73f3e9f3d902c0e6916f2625cdd4

    • SHA256

      51a27ae7329b45a45d56d065900268013e6e4184248cf4807e1d39b124ca8bd7

    • SHA512

      8a59ce460a181f00330dd98813665f0a2aecc52ca1e98c2f1cec6cb34798516bc70860cc918583902dd38eb293b1fcef74317bd119b6720707bdc9694ec7694a

    • SSDEEP

      768:TS5nQJ24LR7tOOtEvwDpjGqPhqlcnvgpnY1n9R:m5nkFNMOtEvwDpjG8hgpY19R

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks