General

  • Target

    2024-06-13_17a968a51c988fb9c9da95a05b4c71d2_cryptolocker

  • Size

    43KB

  • Sample

    240613-dzgmfawell

  • MD5

    17a968a51c988fb9c9da95a05b4c71d2

  • SHA1

    9ebf3426766efd0f96b08168bf1c968fc431c0cc

  • SHA256

    ecab212b3b9b40dfaa41392a98a9805368e5830f3b5d193ffc6c43546a136963

  • SHA512

    f8128a0c61dc65f7a64678bc978059e7e07ef54b7bf3574e0ba94e8ea6b81b0c7c8eed5fc3a045a36925ac2ce5371ae044007b8763a7575c53abf2d0d0abc8f1

  • SSDEEP

    768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVaD3TP7DFHuRcD9CtJo:X6QFElP6n+gJQMOtEvwDpjBmzDkWD8tS

Score
10/10

Malware Config

Targets

    • Target

      2024-06-13_17a968a51c988fb9c9da95a05b4c71d2_cryptolocker

    • Size

      43KB

    • MD5

      17a968a51c988fb9c9da95a05b4c71d2

    • SHA1

      9ebf3426766efd0f96b08168bf1c968fc431c0cc

    • SHA256

      ecab212b3b9b40dfaa41392a98a9805368e5830f3b5d193ffc6c43546a136963

    • SHA512

      f8128a0c61dc65f7a64678bc978059e7e07ef54b7bf3574e0ba94e8ea6b81b0c7c8eed5fc3a045a36925ac2ce5371ae044007b8763a7575c53abf2d0d0abc8f1

    • SSDEEP

      768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVaD3TP7DFHuRcD9CtJo:X6QFElP6n+gJQMOtEvwDpjBmzDkWD8tS

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks