General
-
Target
2024-01-29_171441c38092b950dbca85265ba25362_cryptolocker
-
Size
95KB
-
Sample
240129-nj6lqsabaq
-
MD5
171441c38092b950dbca85265ba25362
-
SHA1
bab8fb59cdeadce9afefbaa607cd505554e09a9a
-
SHA256
8d37b9dbd1a589543a3fe1a314f9264890196f3e2b330b4a8c8758736907679d
-
SHA512
bb1bb53f2954c36ecffc40e7aa04047bf47938d9585dfcb6e7aea767aaa9879645bff6375c80784febb02937b02606bbb1c65eead93e51d36cd6a7392eb89cf7
-
SSDEEP
768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJvfT32:xj+VGMOtEvwDpjubwQEIiVmkf2
Malware Config
Targets
-
-
Target
2024-01-29_171441c38092b950dbca85265ba25362_cryptolocker
-
Size
95KB
-
MD5
171441c38092b950dbca85265ba25362
-
SHA1
bab8fb59cdeadce9afefbaa607cd505554e09a9a
-
SHA256
8d37b9dbd1a589543a3fe1a314f9264890196f3e2b330b4a8c8758736907679d
-
SHA512
bb1bb53f2954c36ecffc40e7aa04047bf47938d9585dfcb6e7aea767aaa9879645bff6375c80784febb02937b02606bbb1c65eead93e51d36cd6a7392eb89cf7
-
SSDEEP
768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJvfT32:xj+VGMOtEvwDpjubwQEIiVmkf2
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Detects executables built or packed with MPress PE compressor
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-