General

  • Target

    2024-06-11_4eafc12b26cd1fc3ad9e98b0b130e05c_cryptolocker

  • Size

    56KB

  • Sample

    240611-dee8wasdmq

  • MD5

    4eafc12b26cd1fc3ad9e98b0b130e05c

  • SHA1

    31d15406254907905296bffaeb585bbf3f0a5afb

  • SHA256

    b9747ee83072494e4a565079a9891181bc72827c7329c97817eff695a1235937

  • SHA512

    f2a80701382bdd7fca3c36581ed5ef59dc0eed2318018e3eb5f2cef2c8a894fce504c6b069cf82aff7bcdb50dabc2c93729572886676a0efebce6583ef3ac9fe

  • SSDEEP

    768:b7o/2n1TCraU6GD1a4Xcn62tH/1/Lp17zJIfeVEuUr6WxOQ:bc/y2lm6iH/NLp17zrV98EQ

Score
10/10

Malware Config

Targets

    • Target

      2024-06-11_4eafc12b26cd1fc3ad9e98b0b130e05c_cryptolocker

    • Size

      56KB

    • MD5

      4eafc12b26cd1fc3ad9e98b0b130e05c

    • SHA1

      31d15406254907905296bffaeb585bbf3f0a5afb

    • SHA256

      b9747ee83072494e4a565079a9891181bc72827c7329c97817eff695a1235937

    • SHA512

      f2a80701382bdd7fca3c36581ed5ef59dc0eed2318018e3eb5f2cef2c8a894fce504c6b069cf82aff7bcdb50dabc2c93729572886676a0efebce6583ef3ac9fe

    • SSDEEP

      768:b7o/2n1TCraU6GD1a4Xcn62tH/1/Lp17zJIfeVEuUr6WxOQ:bc/y2lm6iH/NLp17zrV98EQ

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks