Overview

overview

10

Static

static

10

2024-06-04...er.exe

windows7-x64

9

2024-06-04...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-06-04_2af240e747678040301ab37a407eafc9_cryptolocker

  • Size

    43KB

  • Sample

    240604-wgdryafa88

  • MD5

    2af240e747678040301ab37a407eafc9

  • SHA1

    f424604d23361ca28b6e26325208b14b509d81e0

  • SHA256

    72fa3b6f155081da8e150e3c3196be8374b4e794df0af22a6654dba7c67f1763

  • SHA512

    f308dbf605f9d14643b909e4c46a4aa78acfa1a0794fab4128bf0e9693413356c5945e77d3458ba84dc966483f5d3c9cd815088deb5c76a0313e31af2406e1fe

  • SSDEEP

    768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/CtXabM0I:6j+1NMOtEvwDpjrR2XabMD

Score
10/10

Malware Config

Targets

    • Target

      2024-06-04_2af240e747678040301ab37a407eafc9_cryptolocker

    • Size

      43KB

    • MD5

      2af240e747678040301ab37a407eafc9

    • SHA1

      f424604d23361ca28b6e26325208b14b509d81e0

    • SHA256

      72fa3b6f155081da8e150e3c3196be8374b4e794df0af22a6654dba7c67f1763

    • SHA512

      f308dbf605f9d14643b909e4c46a4aa78acfa1a0794fab4128bf0e9693413356c5945e77d3458ba84dc966483f5d3c9cd815088deb5c76a0313e31af2406e1fe

    • SSDEEP

      768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/CtXabM0I:6j+1NMOtEvwDpjrR2XabMD

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks