Overview

overview

10

Static

static

10

2024-06-04...er.exe

windows7-x64

9

2024-06-04...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-06-04_245828f648f84f1913dea0c689dfc7f9_cryptolocker

  • Size

    97KB

  • Sample

    240604-nlg16aef3x

  • MD5

    245828f648f84f1913dea0c689dfc7f9

  • SHA1

    143058442046e673166f9d71f7a4ced15e6d8957

  • SHA256

    ec05e5fe2b1e1c9f86744b8f43d578013d63b82b399e19484338095b646922db

  • SHA512

    8677aac5dcfe6012a5dee8d8d16f122d31505c9cbc32ecb53b3bc98f7defdd6cc7e0b25d3351ac1d3c74aaf0b7cb4ea6fb477a81fb4d080f54e4dc6f10f33d57

  • SSDEEP

    768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJyqd8:xj+VGMOtEvwDpjubwQEIiVmkuqS

Score
10/10

Malware Config

Targets

    • Target

      2024-06-04_245828f648f84f1913dea0c689dfc7f9_cryptolocker

    • Size

      97KB

    • MD5

      245828f648f84f1913dea0c689dfc7f9

    • SHA1

      143058442046e673166f9d71f7a4ced15e6d8957

    • SHA256

      ec05e5fe2b1e1c9f86744b8f43d578013d63b82b399e19484338095b646922db

    • SHA512

      8677aac5dcfe6012a5dee8d8d16f122d31505c9cbc32ecb53b3bc98f7defdd6cc7e0b25d3351ac1d3c74aaf0b7cb4ea6fb477a81fb4d080f54e4dc6f10f33d57

    • SSDEEP

      768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJyqd8:xj+VGMOtEvwDpjubwQEIiVmkuqS

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks