General

  • Target

    2024-06-12_a2230c69f0730a2d7b3943953751638e_cryptolocker

  • Size

    96KB

  • Sample

    240612-yga26axfja

  • MD5

    a2230c69f0730a2d7b3943953751638e

  • SHA1

    c31ede124022374003cc5db48546b0219dcbac92

  • SHA256

    c40fd0ae297a05257d5459a0df5b85f63e7fb55e7c9b057dd8e56b88991ab359

  • SHA512

    49339060c4ddac36e72cbbeec2c5c129129be5bf6cbf354465e34ce1a5164df7deeb266291f44c1e878b5baaa6c1e07f3cf8ac6f53d44b5001bfc3d56bcafaf2

  • SSDEEP

    768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJyqdOS:xj+VGMOtEvwDpjubwQEIiVmkuqcS

Score
10/10

Malware Config

Targets

    • Target

      2024-06-12_a2230c69f0730a2d7b3943953751638e_cryptolocker

    • Size

      96KB

    • MD5

      a2230c69f0730a2d7b3943953751638e

    • SHA1

      c31ede124022374003cc5db48546b0219dcbac92

    • SHA256

      c40fd0ae297a05257d5459a0df5b85f63e7fb55e7c9b057dd8e56b88991ab359

    • SHA512

      49339060c4ddac36e72cbbeec2c5c129129be5bf6cbf354465e34ce1a5164df7deeb266291f44c1e878b5baaa6c1e07f3cf8ac6f53d44b5001bfc3d56bcafaf2

    • SSDEEP

      768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJyqdOS:xj+VGMOtEvwDpjubwQEIiVmkuqcS

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks