Overview

overview

10

Static

static

10

2024-06-11...er.exe

windows7-x64

9

2024-06-11...er.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    2024-06-11_d574c561ef816012afc6a5a5aa29db07_cryptolocker

  • Size

    52KB

  • Sample

    240611-c4z4xasapj

  • MD5

    d574c561ef816012afc6a5a5aa29db07

  • SHA1

    e172bb399913874efe4a8ff182a25beda01e6998

  • SHA256

    0842072b0269cb6d78e74ca3b210080e3cf5ffdb602d9340a6bc5ffb93a73294

  • SHA512

    cd82a46f25b852a6a2420fd85a175b7dfaf3e1508676c1a1ddadf532ac8fe37c4cff618db4acd82d058e5daf3451b22c87de8161c6a5ecc06924ef188a140c8e

  • SSDEEP

    768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPhqlcnvhx5/xFRY+iyy1:6j+1NMOtEvwDpjr8hhXy+iyy1

Score
10/10

Malware Config

Targets

    • Target

      2024-06-11_d574c561ef816012afc6a5a5aa29db07_cryptolocker

    • Size

      52KB

    • MD5

      d574c561ef816012afc6a5a5aa29db07

    • SHA1

      e172bb399913874efe4a8ff182a25beda01e6998

    • SHA256

      0842072b0269cb6d78e74ca3b210080e3cf5ffdb602d9340a6bc5ffb93a73294

    • SHA512

      cd82a46f25b852a6a2420fd85a175b7dfaf3e1508676c1a1ddadf532ac8fe37c4cff618db4acd82d058e5daf3451b22c87de8161c6a5ecc06924ef188a140c8e

    • SSDEEP

      768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPhqlcnvhx5/xFRY+iyy1:6j+1NMOtEvwDpjr8hhXy+iyy1

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks