General
-
Target
2024-01-18_a3b97cd6fc55f113b91d928ee7fe58f3_cryptolocker
-
Size
88KB
-
Sample
240118-qhp9gacha7
-
MD5
a3b97cd6fc55f113b91d928ee7fe58f3
-
SHA1
0eac49cd880f0a908ec7a9f0c263e8ca83fc50ca
-
SHA256
007f0363b4f690802952a294790ac215d99cc77b7b27f38b9120983b60fe602e
-
SHA512
5d2480ab3333498d53a5817d2eb4a7250b8cb2e005a826ffcfbe2f4000a50f3bc7d7b44d56f53fe8727fd52d4b416b32517e09f9db4458f3ae303dd2a5b5f742
-
SSDEEP
768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRXrZSUfFKazNcCJgW:xj+VGMOtEvwDpjubwQEI8UtzNcsH
Malware Config
Targets
-
-
Target
2024-01-18_a3b97cd6fc55f113b91d928ee7fe58f3_cryptolocker
-
Size
88KB
-
MD5
a3b97cd6fc55f113b91d928ee7fe58f3
-
SHA1
0eac49cd880f0a908ec7a9f0c263e8ca83fc50ca
-
SHA256
007f0363b4f690802952a294790ac215d99cc77b7b27f38b9120983b60fe602e
-
SHA512
5d2480ab3333498d53a5817d2eb4a7250b8cb2e005a826ffcfbe2f4000a50f3bc7d7b44d56f53fe8727fd52d4b416b32517e09f9db4458f3ae303dd2a5b5f742
-
SSDEEP
768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRXrZSUfFKazNcCJgW:xj+VGMOtEvwDpjubwQEI8UtzNcsH
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Detects executables built or packed with MPress PE compressor
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-