Overview

overview

10

Static

static

10

2024-06-04...er.exe

windows7-x64

9

2024-06-04...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-06-04_2188ca82dba1154bddc92550bfbe0995_cryptolocker

  • Size

    50KB

  • Sample

    240604-veyhwsdc8s

  • MD5

    2188ca82dba1154bddc92550bfbe0995

  • SHA1

    babb78165edd0e78cd437db6f7e44879f771f0d2

  • SHA256

    10593242349478280ed240e160cb7333c5f27b4b801a962aea95a8fb4fcac0de

  • SHA512

    483813ed03a7f998f279c0cdb1316137480f7c20d9a4f5b5e82b974d54a45091894d6b265d65e1ec9feb8cf7fbd738190cac8d5cdbeceed2de989b20efde6969

  • SSDEEP

    768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLbjG9Rva/yYsm06MqV:xj+VGMOtEvwDpjy+viHs7pu

Score
10/10

Malware Config

Targets

    • Target

      2024-06-04_2188ca82dba1154bddc92550bfbe0995_cryptolocker

    • Size

      50KB

    • MD5

      2188ca82dba1154bddc92550bfbe0995

    • SHA1

      babb78165edd0e78cd437db6f7e44879f771f0d2

    • SHA256

      10593242349478280ed240e160cb7333c5f27b4b801a962aea95a8fb4fcac0de

    • SHA512

      483813ed03a7f998f279c0cdb1316137480f7c20d9a4f5b5e82b974d54a45091894d6b265d65e1ec9feb8cf7fbd738190cac8d5cdbeceed2de989b20efde6969

    • SSDEEP

      768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLbjG9Rva/yYsm06MqV:xj+VGMOtEvwDpjy+viHs7pu

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks