General
-
Target
2024-01-28_e7f8d570b7d135cca6124d66b45eb4fe_cryptolocker
-
Size
58KB
-
Sample
240128-d8tclaaed3
-
MD5
e7f8d570b7d135cca6124d66b45eb4fe
-
SHA1
818d7842aca387ccc6c05c5a1444c95fdf03ba31
-
SHA256
06609d0d1b7e7688f81f10ab5ee6e7e5259fbc4db1b729693e5b76cc6bb86d56
-
SHA512
9eb82584a83d1899166d26ae6405836d75f67250e7a86be2fc3d8a6c48175c88f7c276b6a8515cbdea4864bda3687a3e9d093675a544e4e1a9cb4b6e2e44c086
-
SSDEEP
1536:qmbhXDmjr5MOtEvwDpj5cDtKkQZQRKb61vSbgn:BbdDmjr+OtEvwDpjM8y
Malware Config
Targets
-
-
Target
2024-01-28_e7f8d570b7d135cca6124d66b45eb4fe_cryptolocker
-
Size
58KB
-
MD5
e7f8d570b7d135cca6124d66b45eb4fe
-
SHA1
818d7842aca387ccc6c05c5a1444c95fdf03ba31
-
SHA256
06609d0d1b7e7688f81f10ab5ee6e7e5259fbc4db1b729693e5b76cc6bb86d56
-
SHA512
9eb82584a83d1899166d26ae6405836d75f67250e7a86be2fc3d8a6c48175c88f7c276b6a8515cbdea4864bda3687a3e9d093675a544e4e1a9cb4b6e2e44c086
-
SSDEEP
1536:qmbhXDmjr5MOtEvwDpj5cDtKkQZQRKb61vSbgn:BbdDmjr+OtEvwDpjM8y
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-