General

  • Target

    2024-06-13_e67d4de7051acf98ab865047f448fcd7_cryptolocker

  • Size

    43KB

  • Sample

    240613-p2gk1azapf

  • MD5

    e67d4de7051acf98ab865047f448fcd7

  • SHA1

    caf7990e3e1f673774d736ac27ca84660f8bc99b

  • SHA256

    d4df693f95954063e4a41806eef53de8f6d430b035d58c02862902a2840c70a9

  • SHA512

    bb979019e13fd9992893cebfdccc9aa95c8028a5b4c9f6e168fadc105c80a8c1435292914b8d15d9a0201e1e5fc7b788accace7560633db8354ccc85e2c99b22

  • SSDEEP

    768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAHQK:bCDOw9aMDooc+vAwK

Score
10/10

Malware Config

Targets

    • Target

      2024-06-13_e67d4de7051acf98ab865047f448fcd7_cryptolocker

    • Size

      43KB

    • MD5

      e67d4de7051acf98ab865047f448fcd7

    • SHA1

      caf7990e3e1f673774d736ac27ca84660f8bc99b

    • SHA256

      d4df693f95954063e4a41806eef53de8f6d430b035d58c02862902a2840c70a9

    • SHA512

      bb979019e13fd9992893cebfdccc9aa95c8028a5b4c9f6e168fadc105c80a8c1435292914b8d15d9a0201e1e5fc7b788accace7560633db8354ccc85e2c99b22

    • SSDEEP

      768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAHQK:bCDOw9aMDooc+vAwK

    Score
    9/10
    • Detection of CryptoLocker Variants

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks