General

  • Target

    2024-06-03_fb927b0257f8582691c0e78786d686fa_cryptolocker

  • Size

    54KB

  • Sample

    240603-n1s2zaeg74

  • MD5

    fb927b0257f8582691c0e78786d686fa

  • SHA1

    284bc5b58c9f77804c23d8009be3a7ee351a8fa1

  • SHA256

    10817417a5249154a07cecb83967c278d9941dea83d4d1e38a818b78bf2390fc

  • SHA512

    8fc7660f22ca09e995b7202b8cfdb6f4c0e70fa29956f5d6819b0859febaf28015d9aee9466bb6c4c09b9cbaa88cd1cfff45ccecce76c23310f4524ec6df874b

  • SSDEEP

    768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPhqlcnvhx5/xFRkHg:6j+1NMOtEvwDpjr8hhXiA

Score
10/10

Malware Config

Targets

    • Target

      2024-06-03_fb927b0257f8582691c0e78786d686fa_cryptolocker

    • Size

      54KB

    • MD5

      fb927b0257f8582691c0e78786d686fa

    • SHA1

      284bc5b58c9f77804c23d8009be3a7ee351a8fa1

    • SHA256

      10817417a5249154a07cecb83967c278d9941dea83d4d1e38a818b78bf2390fc

    • SHA512

      8fc7660f22ca09e995b7202b8cfdb6f4c0e70fa29956f5d6819b0859febaf28015d9aee9466bb6c4c09b9cbaa88cd1cfff45ccecce76c23310f4524ec6df874b

    • SSDEEP

      768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPhqlcnvhx5/xFRkHg:6j+1NMOtEvwDpjr8hhXiA

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks