Overview

overview

10

Static

static

10

2024-06-03...er.exe

windows7-x64

9

2024-06-03...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-06-03_a3880dc8a9a1a883515fe43569dd86c8_cryptolocker

  • Size

    43KB

  • Sample

    240603-eee4jsbf66

  • MD5

    a3880dc8a9a1a883515fe43569dd86c8

  • SHA1

    2516da276c6fbd60491b211f0f4a8c89870c0637

  • SHA256

    dbef8e3bcec0b04a751e71792e7e8c0914e961b4492113bcd271cf0b75867bee

  • SHA512

    412035bde0e993b081d162ad92468fe930305e1cc2ea2d3df995fba18178ec56b68ec842071114e55e201424588915b1c7508a0f4251f71d69f8dd7b2771dbb8

  • SSDEEP

    768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/agqEM:6j+1NMOtEvwDpjrRtqt

Score
10/10

Malware Config

Targets

    • Target

      2024-06-03_a3880dc8a9a1a883515fe43569dd86c8_cryptolocker

    • Size

      43KB

    • MD5

      a3880dc8a9a1a883515fe43569dd86c8

    • SHA1

      2516da276c6fbd60491b211f0f4a8c89870c0637

    • SHA256

      dbef8e3bcec0b04a751e71792e7e8c0914e961b4492113bcd271cf0b75867bee

    • SHA512

      412035bde0e993b081d162ad92468fe930305e1cc2ea2d3df995fba18178ec56b68ec842071114e55e201424588915b1c7508a0f4251f71d69f8dd7b2771dbb8

    • SSDEEP

      768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/agqEM:6j+1NMOtEvwDpjrRtqt

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks