Overview

overview

10

Static

static

10

2024-06-19...er.exe

windows7-x64

9

2024-06-19...er.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2024-06-19_4e49e3c281aa267baa7cdcf7a4ece608_cryptolocker

  • Size

    48KB

  • Sample

    240619-2aqqtayfkm

  • MD5

    4e49e3c281aa267baa7cdcf7a4ece608

  • SHA1

    20705a234bf346ec663c5d4e4f5c6576cae8fa3a

  • SHA256

    3acc609e958655571909e388ab7c35bde93c2dec6749761a9a1accbcc78c0cd4

  • SHA512

    89f0692e10ffc4c55d6136409b0626987eabd0b45975fc9f39d9f6106e908e5f0a1bbaaf09f966b2d47a5c07d38252ff08c23e281c2d00269a5a20071c49f4df

  • SSDEEP

    768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLbjG9RzhwaRhAD:xj+VGMOtEvwDpjy+TRhc

Score
10/10

Malware Config

Targets

    • Target

      2024-06-19_4e49e3c281aa267baa7cdcf7a4ece608_cryptolocker

    • Size

      48KB

    • MD5

      4e49e3c281aa267baa7cdcf7a4ece608

    • SHA1

      20705a234bf346ec663c5d4e4f5c6576cae8fa3a

    • SHA256

      3acc609e958655571909e388ab7c35bde93c2dec6749761a9a1accbcc78c0cd4

    • SHA512

      89f0692e10ffc4c55d6136409b0626987eabd0b45975fc9f39d9f6106e908e5f0a1bbaaf09f966b2d47a5c07d38252ff08c23e281c2d00269a5a20071c49f4df

    • SSDEEP

      768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLbjG9RzhwaRhAD:xj+VGMOtEvwDpjy+TRhc

    Score
    9/10

    • Detection of CryptoLocker Variants

    • Detection of Cryptolocker Samples

    • Detects executables built or packed with MPress PE compressor

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks