General

  • Target

    2024-06-12_42d876110a7b5e38861c8a042f670c60_cryptolocker

  • Size

    56KB

  • Sample

    240612-xezgaswanh

  • MD5

    42d876110a7b5e38861c8a042f670c60

  • SHA1

    7113e649b4602619fb73e25a9d6d3a263b01c188

  • SHA256

    967b984cd77a41b673ed88cd6c65d5eddc079a2ac04657257aba01b68c424b2f

  • SHA512

    6a23e3f28db0b7eeebd7dd61920e7ee8e598f31d10b9206309667a0cdd9e95d46b3bba23c99d9cce1b5a2473ce3873c9985c092e1d91d808517593efad35016c

  • SSDEEP

    768:b7o/2n1TCraU6GD1a4Xcn62tH/1/Lp17zJIfeVEuUr6Wx6:bc/y2lm6iH/NLp17zrV98Y

Score
10/10

Malware Config

Targets

    • Target

      2024-06-12_42d876110a7b5e38861c8a042f670c60_cryptolocker

    • Size

      56KB

    • MD5

      42d876110a7b5e38861c8a042f670c60

    • SHA1

      7113e649b4602619fb73e25a9d6d3a263b01c188

    • SHA256

      967b984cd77a41b673ed88cd6c65d5eddc079a2ac04657257aba01b68c424b2f

    • SHA512

      6a23e3f28db0b7eeebd7dd61920e7ee8e598f31d10b9206309667a0cdd9e95d46b3bba23c99d9cce1b5a2473ce3873c9985c092e1d91d808517593efad35016c

    • SSDEEP

      768:b7o/2n1TCraU6GD1a4Xcn62tH/1/Lp17zJIfeVEuUr6Wx6:bc/y2lm6iH/NLp17zrV98Y

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks