General

  • Target

    2024-06-06_91b71c37a4321de87f1a46c5d1c75369_cryptolocker

  • Size

    44KB

  • Sample

    240606-1dk43add74

  • MD5

    91b71c37a4321de87f1a46c5d1c75369

  • SHA1

    25162f4107415e06b169a4c8524af270f504a298

  • SHA256

    4f8807d2c7d9754c5f1b91ea8f50199d2c36cc20cabd7bd0e74bead2b2480ece

  • SHA512

    de0c06198c96d2e0775281b21c27ccc7a83b39b24a6c2abd0dffb3451f7daa86993dbcb7f7121d1e2961740d6febb447c126b71f9b7a6ce09e48c46977501ecc

  • SSDEEP

    768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/aD0:6j+1NMOtEvwDpjrR/

Score
10/10

Malware Config

Targets

    • Target

      2024-06-06_91b71c37a4321de87f1a46c5d1c75369_cryptolocker

    • Size

      44KB

    • MD5

      91b71c37a4321de87f1a46c5d1c75369

    • SHA1

      25162f4107415e06b169a4c8524af270f504a298

    • SHA256

      4f8807d2c7d9754c5f1b91ea8f50199d2c36cc20cabd7bd0e74bead2b2480ece

    • SHA512

      de0c06198c96d2e0775281b21c27ccc7a83b39b24a6c2abd0dffb3451f7daa86993dbcb7f7121d1e2961740d6febb447c126b71f9b7a6ce09e48c46977501ecc

    • SSDEEP

      768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/aD0:6j+1NMOtEvwDpjrR/

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks