General

  • Target

    2024-06-11_f8fe7e09b1ba9a813890f56a71ed7437_cryptolocker

  • Size

    43KB

  • Sample

    240611-c6qy1ssbjp

  • MD5

    f8fe7e09b1ba9a813890f56a71ed7437

  • SHA1

    60281f2759900a579411bc8478dabd874a99ae9b

  • SHA256

    b9d78020a4da6eddddb943b6898377af93957b779c48ae145378d096b1a10656

  • SHA512

    d4cbe3dc37f237ce1f16b49f1770a7337ac146d7f7dd725274a0cf7dbea7aff53f6b2e315cbc81e6f7f67fdcdc13ead649efac7c8ffa8580eefe9a4beba85976

  • SSDEEP

    768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/aDDRk:6j+1NMOtEvwDpjrRsk

Score
10/10

Malware Config

Targets

    • Target

      2024-06-11_f8fe7e09b1ba9a813890f56a71ed7437_cryptolocker

    • Size

      43KB

    • MD5

      f8fe7e09b1ba9a813890f56a71ed7437

    • SHA1

      60281f2759900a579411bc8478dabd874a99ae9b

    • SHA256

      b9d78020a4da6eddddb943b6898377af93957b779c48ae145378d096b1a10656

    • SHA512

      d4cbe3dc37f237ce1f16b49f1770a7337ac146d7f7dd725274a0cf7dbea7aff53f6b2e315cbc81e6f7f67fdcdc13ead649efac7c8ffa8580eefe9a4beba85976

    • SSDEEP

      768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/aDDRk:6j+1NMOtEvwDpjrRsk

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks