General
-
Target
2024-01-28_dac153a312955e0b8b0a072d5d050108_cryptolocker
-
Size
47KB
-
Sample
240128-jjsmnaece7
-
MD5
dac153a312955e0b8b0a072d5d050108
-
SHA1
964d66bb455da21aaff6359175aed18d7f62fbc0
-
SHA256
d428e8f16323358d956f51af15df22b06118769ee6835f0593ab90d1c549b4a2
-
SHA512
1aa5ff32fbd32e72be88363bfbcda1fff05fca38fea93317f788c3ee80975451668325c1e0decfa457e51d029f3b09a7059640b602c85463c233b517da863922
-
SSDEEP
384:icX+ni9VCr5nQI021q4VQBqURYp055TOtOOtEvwDpjqIGR/hHi7/OlI0G/74zpzS:XS5nQJ24LR1bytOOtEvwDpjNbP/0GgM
Malware Config
Targets
-
-
Target
2024-01-28_dac153a312955e0b8b0a072d5d050108_cryptolocker
-
Size
47KB
-
MD5
dac153a312955e0b8b0a072d5d050108
-
SHA1
964d66bb455da21aaff6359175aed18d7f62fbc0
-
SHA256
d428e8f16323358d956f51af15df22b06118769ee6835f0593ab90d1c549b4a2
-
SHA512
1aa5ff32fbd32e72be88363bfbcda1fff05fca38fea93317f788c3ee80975451668325c1e0decfa457e51d029f3b09a7059640b602c85463c233b517da863922
-
SSDEEP
384:icX+ni9VCr5nQI021q4VQBqURYp055TOtOOtEvwDpjqIGR/hHi7/OlI0G/74zpzS:XS5nQJ24LR1bytOOtEvwDpjNbP/0GgM
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Detects executables built or packed with MPress PE compressor
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-