General

  • Target

    2024-06-01_406161008137361c1f27204c3936b708_cryptolocker

  • Size

    87KB

  • Sample

    240601-w2ngwaah8z

  • MD5

    406161008137361c1f27204c3936b708

  • SHA1

    c4a21c7dc617256f03b86de3c7f068934cfa0187

  • SHA256

    9bcd4d531561b1dd42b263b5366d528d80f11f26031b275028970bccfb582fe0

  • SHA512

    fe2e21dbe93e9fec50cd758d3f5739aef5db83994e14bce6029af6bb316693d09ecb1361b874f70a0a6d8d3a3e9ee47708739205ea99af6562f30be43abdbf8d

  • SSDEEP

    1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfWafHNBULu:vCjsIOtEvwDpj5H9YvQd29

Score
10/10

Malware Config

Targets

    • Target

      2024-06-01_406161008137361c1f27204c3936b708_cryptolocker

    • Size

      87KB

    • MD5

      406161008137361c1f27204c3936b708

    • SHA1

      c4a21c7dc617256f03b86de3c7f068934cfa0187

    • SHA256

      9bcd4d531561b1dd42b263b5366d528d80f11f26031b275028970bccfb582fe0

    • SHA512

      fe2e21dbe93e9fec50cd758d3f5739aef5db83994e14bce6029af6bb316693d09ecb1361b874f70a0a6d8d3a3e9ee47708739205ea99af6562f30be43abdbf8d

    • SSDEEP

      1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfWafHNBULu:vCjsIOtEvwDpj5H9YvQd29

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks