Overview

overview

10

Static

static

10

2024-06-11...er.exe

windows7-x64

9

2024-06-11...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-06-11_8e9c2db7aa0c4f9d3f7164834c548005_cryptolocker

  • Size

    43KB

  • Sample

    240611-bg88maxhmh

  • MD5

    8e9c2db7aa0c4f9d3f7164834c548005

  • SHA1

    99451b3cc3ef621ccf53786beb0c401bb3813f2b

  • SHA256

    df777fe1a9a79230aa7ec773f73524b86442592a2367a303b5cabded39c4de1c

  • SHA512

    a2cf5f27e9b5bed27a41f5f86b83dd637bc46ceed1e02c87d05c19e2e3afcb604f1485a903a64807cce766c89a63f11b8a3e7de65c64e206bb3d0849caea3f9e

  • SSDEEP

    768:XS5nQJ24LR1bytOOtEvwDpj66BLbjG9Rva/yYshNh5:i5nkFGMOtEvwDpjR+viHshN/

Score
10/10

Malware Config

Targets

    • Target

      2024-06-11_8e9c2db7aa0c4f9d3f7164834c548005_cryptolocker

    • Size

      43KB

    • MD5

      8e9c2db7aa0c4f9d3f7164834c548005

    • SHA1

      99451b3cc3ef621ccf53786beb0c401bb3813f2b

    • SHA256

      df777fe1a9a79230aa7ec773f73524b86442592a2367a303b5cabded39c4de1c

    • SHA512

      a2cf5f27e9b5bed27a41f5f86b83dd637bc46ceed1e02c87d05c19e2e3afcb604f1485a903a64807cce766c89a63f11b8a3e7de65c64e206bb3d0849caea3f9e

    • SSDEEP

      768:XS5nQJ24LR1bytOOtEvwDpj66BLbjG9Rva/yYshNh5:i5nkFGMOtEvwDpjR+viHshN/

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks