General
-
Target
2024-01-23_449e7444729429c60074af2b5131019b_cryptolocker
-
Size
98KB
-
Sample
240123-tw4ksscgh6
-
MD5
449e7444729429c60074af2b5131019b
-
SHA1
e407a12321e42e4d068a69f2c930a4b2fdadbf5f
-
SHA256
9f7ecb08285ac87e06506ba7983b27942121e8e3916bc117da7f2b0e6be4ddbf
-
SHA512
7537b2dd186588d1fa72ef1049faf9e2134dd8c72c3ccb60252c05b91cfe99d52ee6fc821d0ec093d0c85517048dc9f0b93e0898a5c97ce2b96a26820aa83411
-
SSDEEP
768:XS5nQJ24LR1bytOOtEvwDpjNbZ7uyA36S7MpxRiWjz/6n:i5nkFGMOtEvwDpjNbwQEIikrw
Malware Config
Targets
-
-
Target
2024-01-23_449e7444729429c60074af2b5131019b_cryptolocker
-
Size
98KB
-
MD5
449e7444729429c60074af2b5131019b
-
SHA1
e407a12321e42e4d068a69f2c930a4b2fdadbf5f
-
SHA256
9f7ecb08285ac87e06506ba7983b27942121e8e3916bc117da7f2b0e6be4ddbf
-
SHA512
7537b2dd186588d1fa72ef1049faf9e2134dd8c72c3ccb60252c05b91cfe99d52ee6fc821d0ec093d0c85517048dc9f0b93e0898a5c97ce2b96a26820aa83411
-
SSDEEP
768:XS5nQJ24LR1bytOOtEvwDpjNbZ7uyA36S7MpxRiWjz/6n:i5nkFGMOtEvwDpjNbwQEIikrw
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Detects executables built or packed with MPress PE compressor
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-