General

  • Target

    2024-06-02_c29253cd33eb5c89978ba34e7ce00598_cryptolocker

  • Size

    36KB

  • Sample

    240602-fb13aabd5s

  • MD5

    c29253cd33eb5c89978ba34e7ce00598

  • SHA1

    0a069a975944ef3edb8fe8b497842ec2120b3563

  • SHA256

    61b824350ade80ad868f136fc164cfc8d11d0e9aa40a3dba487c1589675d63b0

  • SHA512

    3d5d0fe352d150f5bf4d80d2adc7f2798d40e1171516cf54db522683ab61af4a300948550cb248682dccb607ea369559d8e43ab3efebf5a7942333872fd47ab6

  • SSDEEP

    384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4l8tFFxE2B0qZf:btB9g/WItCSsAGjX7r3BTZf

Score
10/10

Malware Config

Targets

    • Target

      2024-06-02_c29253cd33eb5c89978ba34e7ce00598_cryptolocker

    • Size

      36KB

    • MD5

      c29253cd33eb5c89978ba34e7ce00598

    • SHA1

      0a069a975944ef3edb8fe8b497842ec2120b3563

    • SHA256

      61b824350ade80ad868f136fc164cfc8d11d0e9aa40a3dba487c1589675d63b0

    • SHA512

      3d5d0fe352d150f5bf4d80d2adc7f2798d40e1171516cf54db522683ab61af4a300948550cb248682dccb607ea369559d8e43ab3efebf5a7942333872fd47ab6

    • SSDEEP

      384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4l8tFFxE2B0qZf:btB9g/WItCSsAGjX7r3BTZf

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks