General

  • Target

    2024-06-12_09411b543db5d43cd75d836e8df67867_cryptolocker

  • Size

    31KB

  • Sample

    240612-w112ksyekn

  • MD5

    09411b543db5d43cd75d836e8df67867

  • SHA1

    979de77e4fc459035c4976753720dce4950c58ac

  • SHA256

    d2e445ecaf2e99708f19e2de714ea751cbf51776d07ba6f7dcd167cdd071d8ff

  • SHA512

    3571da78ce7f15ccf5ed231e7efbb1c264176600b191aa413689370f652b878c9865653742b9fe13c025ddd79a4741ecd929fa2d6de32c7239ee6b8cb542c9ce

  • SSDEEP

    384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzo6cJ3vdo:bAvJCYOOvbRPDEgXRcJm

Score
10/10

Malware Config

Targets

    • Target

      2024-06-12_09411b543db5d43cd75d836e8df67867_cryptolocker

    • Size

      31KB

    • MD5

      09411b543db5d43cd75d836e8df67867

    • SHA1

      979de77e4fc459035c4976753720dce4950c58ac

    • SHA256

      d2e445ecaf2e99708f19e2de714ea751cbf51776d07ba6f7dcd167cdd071d8ff

    • SHA512

      3571da78ce7f15ccf5ed231e7efbb1c264176600b191aa413689370f652b878c9865653742b9fe13c025ddd79a4741ecd929fa2d6de32c7239ee6b8cb542c9ce

    • SSDEEP

      384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzo6cJ3vdo:bAvJCYOOvbRPDEgXRcJm

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks