General

  • Target

    2024-06-13_8248c3cb0de2cfe43a0757504be06313_cryptolocker

  • Size

    70KB

  • Sample

    240613-b7kb7azdpc

  • MD5

    8248c3cb0de2cfe43a0757504be06313

  • SHA1

    bca40a8af65b5e928bda567e21b82e5e93fb9f2f

  • SHA256

    f50d7a44176ab1323ca33be3a9df308a530c167f09554ff56528614c85f3e0db

  • SHA512

    d742cf361ee6642d16cd40e573891a511ef1c47f81a3b5a668a9882d1796c7cc4f2cc4cc65dd121f0aecaa9bfbf6ee6c8493d94a0db65b2358161d70abce02da

  • SSDEEP

    768:XS5nQJ24LR1bytOOtEvwDpjNbZ7uyA36S7MpxRXrZSUNsYD/dp5:i5nkFGMOtEvwDpjNbwQEI8UZD9

Score
10/10

Malware Config

Targets

    • Target

      2024-06-13_8248c3cb0de2cfe43a0757504be06313_cryptolocker

    • Size

      70KB

    • MD5

      8248c3cb0de2cfe43a0757504be06313

    • SHA1

      bca40a8af65b5e928bda567e21b82e5e93fb9f2f

    • SHA256

      f50d7a44176ab1323ca33be3a9df308a530c167f09554ff56528614c85f3e0db

    • SHA512

      d742cf361ee6642d16cd40e573891a511ef1c47f81a3b5a668a9882d1796c7cc4f2cc4cc65dd121f0aecaa9bfbf6ee6c8493d94a0db65b2358161d70abce02da

    • SSDEEP

      768:XS5nQJ24LR1bytOOtEvwDpjNbZ7uyA36S7MpxRXrZSUNsYD/dp5:i5nkFGMOtEvwDpjNbwQEI8UZD9

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks