General

  • Target

    2024-05-21_ef3a4afdc08152efabb508e78ea6929d_cryptolocker

  • Size

    43KB

  • Sample

    240521-tje2nsbd2x

  • MD5

    ef3a4afdc08152efabb508e78ea6929d

  • SHA1

    b3941022e8c3dd3187c800146b5ce5c8855c0519

  • SHA256

    7f9444082f61ad95291fef7ad558b9350068fdde2f69d0dd03cc639e8a04bb17

  • SHA512

    78ef1c34827bc98455aa2e08db17d2ae0fe7d0a50ac9a607a9ce7462adddc4a54e6eb89222eaa8fd12ff97a230afd173bd4760689c50c00b3ab23c9d66c39708

  • SSDEEP

    768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAIie0w:bCDOw9aMDooc+vAlc

Score
10/10

Malware Config

Targets

    • Target

      2024-05-21_ef3a4afdc08152efabb508e78ea6929d_cryptolocker

    • Size

      43KB

    • MD5

      ef3a4afdc08152efabb508e78ea6929d

    • SHA1

      b3941022e8c3dd3187c800146b5ce5c8855c0519

    • SHA256

      7f9444082f61ad95291fef7ad558b9350068fdde2f69d0dd03cc639e8a04bb17

    • SHA512

      78ef1c34827bc98455aa2e08db17d2ae0fe7d0a50ac9a607a9ce7462adddc4a54e6eb89222eaa8fd12ff97a230afd173bd4760689c50c00b3ab23c9d66c39708

    • SSDEEP

      768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAIie0w:bCDOw9aMDooc+vAlc

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks