General
-
Target
2024-01-27_45d8480b7441a72773b5b8822d7b3368_cryptolocker
-
Size
62KB
-
Sample
240127-2bm2bafccn
-
MD5
45d8480b7441a72773b5b8822d7b3368
-
SHA1
23728153ff089a0ff4e1dbd25d29a2ebd4d91640
-
SHA256
9010bc04bd117ab66d6036f025f273608b2a0a51652c6c4d9a293c41c8d42073
-
SHA512
03477baccdbc454faeaeaf7b01ac5092ee893aa4caa68eaa5b9f8c3bc449f17205dbd53553c421838234d2907a8c656a3075e83244564e1a1536e6be1d3e30c3
-
SSDEEP
768:zQz7yVEhs9+syJP6ntOOtEvwDpjFelaB7yBEY9Su8F5mLZ5K7/:zj+soPSMOtEvwDpj4kpmeLmY
Malware Config
Targets
-
-
Target
2024-01-27_45d8480b7441a72773b5b8822d7b3368_cryptolocker
-
Size
62KB
-
MD5
45d8480b7441a72773b5b8822d7b3368
-
SHA1
23728153ff089a0ff4e1dbd25d29a2ebd4d91640
-
SHA256
9010bc04bd117ab66d6036f025f273608b2a0a51652c6c4d9a293c41c8d42073
-
SHA512
03477baccdbc454faeaeaf7b01ac5092ee893aa4caa68eaa5b9f8c3bc449f17205dbd53553c421838234d2907a8c656a3075e83244564e1a1536e6be1d3e30c3
-
SSDEEP
768:zQz7yVEhs9+syJP6ntOOtEvwDpjFelaB7yBEY9Su8F5mLZ5K7/:zj+soPSMOtEvwDpj4kpmeLmY
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-