General

  • Target

    2024-06-11_3bcd499137a5751e33be732614829a6c_cryptolocker

  • Size

    44KB

  • Sample

    240611-dcb4fa1fpb

  • MD5

    3bcd499137a5751e33be732614829a6c

  • SHA1

    7e62b87f54a80b20945a1e89de0c355644c61d9e

  • SHA256

    a53fe8dbf1e2993eb6f4a435d2c37c4fdbda4838741d49f0a296f911065b1876

  • SHA512

    c62954bd9f894e4ca039b2b9eb0ac1760c663ed92386891f2719983a8b3e71649cd52b5f2af593121e3a1b4dcfabd7711a39eaa547852b0e13e7ff7608f0b8ea

  • SSDEEP

    768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/aDU:6j+1NMOtEvwDpjrR/

Score
10/10

Malware Config

Targets

    • Target

      2024-06-11_3bcd499137a5751e33be732614829a6c_cryptolocker

    • Size

      44KB

    • MD5

      3bcd499137a5751e33be732614829a6c

    • SHA1

      7e62b87f54a80b20945a1e89de0c355644c61d9e

    • SHA256

      a53fe8dbf1e2993eb6f4a435d2c37c4fdbda4838741d49f0a296f911065b1876

    • SHA512

      c62954bd9f894e4ca039b2b9eb0ac1760c663ed92386891f2719983a8b3e71649cd52b5f2af593121e3a1b4dcfabd7711a39eaa547852b0e13e7ff7608f0b8ea

    • SSDEEP

      768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/aDU:6j+1NMOtEvwDpjrR/

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks