General
-
Target
2024-02-01_946e551152bc346746ab99b16f602649_cryptolocker
-
Size
62KB
-
Sample
240201-t4bjzscadq
-
MD5
946e551152bc346746ab99b16f602649
-
SHA1
d6b1a94582075a7751ee7e7e3a8883791ee4176e
-
SHA256
ccb2852d2dc7ccee2553fc8f110aa3e4b837a928526e12282a735426bfeddeb4
-
SHA512
ceafb0ebfec0ce99d5126813a2e99d471f8753b403b0c0133df9b6427c0ade1a5dbf649423b24571534d6faa5155b743b0baa5ef11a1c725d5ab29a2b8b893c9
-
SSDEEP
768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I52kGEO10KmY8:6j+1NMOtEvwDpjr8ox8UDEy0KmY8
Malware Config
Targets
-
-
Target
2024-02-01_946e551152bc346746ab99b16f602649_cryptolocker
-
Size
62KB
-
MD5
946e551152bc346746ab99b16f602649
-
SHA1
d6b1a94582075a7751ee7e7e3a8883791ee4176e
-
SHA256
ccb2852d2dc7ccee2553fc8f110aa3e4b837a928526e12282a735426bfeddeb4
-
SHA512
ceafb0ebfec0ce99d5126813a2e99d471f8753b403b0c0133df9b6427c0ade1a5dbf649423b24571534d6faa5155b743b0baa5ef11a1c725d5ab29a2b8b893c9
-
SSDEEP
768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I52kGEO10KmY8:6j+1NMOtEvwDpjr8ox8UDEy0KmY8
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Detects executables built or packed with MPress PE compressor
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-