Overview

overview

10

Static

static

10

2024-05-30...er.exe

windows7-x64

9

2024-05-30...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-05-30_bf92fb4fd2767ee41f951509e4bd01af_cryptolocker

  • Size

    52KB

  • Sample

    240530-hsc3wsab4w

  • MD5

    bf92fb4fd2767ee41f951509e4bd01af

  • SHA1

    e2d159aef5adcb2524d7d6275fe357768ec36722

  • SHA256

    377a10c8289d6e9f933a37385b64d0b3e1c903218821492e354048b547ff58b8

  • SHA512

    14529a6d9cbf9373ab417182d1135d4e0e4d2a2644384fca82b43dbc8238ec7b0f7ffda597f62480b685ca44a0ec78c090122f002e19d2d33faf499b81868ed2

  • SSDEEP

    768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPhqlcnvhx5/xFRY+iyyDD:6j+1NMOtEvwDpjr8hhXy+iyy3

Score
10/10

Malware Config

Targets

    • Target

      2024-05-30_bf92fb4fd2767ee41f951509e4bd01af_cryptolocker

    • Size

      52KB

    • MD5

      bf92fb4fd2767ee41f951509e4bd01af

    • SHA1

      e2d159aef5adcb2524d7d6275fe357768ec36722

    • SHA256

      377a10c8289d6e9f933a37385b64d0b3e1c903218821492e354048b547ff58b8

    • SHA512

      14529a6d9cbf9373ab417182d1135d4e0e4d2a2644384fca82b43dbc8238ec7b0f7ffda597f62480b685ca44a0ec78c090122f002e19d2d33faf499b81868ed2

    • SSDEEP

      768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPhqlcnvhx5/xFRY+iyyDD:6j+1NMOtEvwDpjr8hhXy+iyy3

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks