General

  • Target

    2024-06-12_03c6a71c542bac69a6761bb6cc72e932_cryptolocker

  • Size

    37KB

  • Sample

    240612-s6kd8sthnp

  • MD5

    03c6a71c542bac69a6761bb6cc72e932

  • SHA1

    d2f865f8a27c61abbbb050534bbd67ae0bc2cbd0

  • SHA256

    2e42058020c5a8b1160c2d6778e4d9a08f973cf9a69474833e41ff48684facb0

  • SHA512

    f75e9c2eb9f7c123925a1bcc2e767b6361e5636e95349daa53aa540b78401a5ea718bee35e349a5e31396b0fd4ed2cb5d6f869639e5a0d5521accaf77ab68b29

  • SSDEEP

    384:bmM0V/YPvnr801TRoUGPh4TKt6ATt1DqgPa3s/zzoCt9/B1RU3V6uVSCFy:b7o/2n1TCraU6GD1a4Xt9bRUlV4F

Score
10/10

Malware Config

Targets

    • Target

      2024-06-12_03c6a71c542bac69a6761bb6cc72e932_cryptolocker

    • Size

      37KB

    • MD5

      03c6a71c542bac69a6761bb6cc72e932

    • SHA1

      d2f865f8a27c61abbbb050534bbd67ae0bc2cbd0

    • SHA256

      2e42058020c5a8b1160c2d6778e4d9a08f973cf9a69474833e41ff48684facb0

    • SHA512

      f75e9c2eb9f7c123925a1bcc2e767b6361e5636e95349daa53aa540b78401a5ea718bee35e349a5e31396b0fd4ed2cb5d6f869639e5a0d5521accaf77ab68b29

    • SSDEEP

      384:bmM0V/YPvnr801TRoUGPh4TKt6ATt1DqgPa3s/zzoCt9/B1RU3V6uVSCFy:b7o/2n1TCraU6GD1a4Xt9bRUlV4F

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks