General
-
Target
2024-02-11_f22d11a42bb161d7b0d652fa628536c3_cryptolocker
-
Size
93KB
-
Sample
240211-v96sracb67
-
MD5
f22d11a42bb161d7b0d652fa628536c3
-
SHA1
616e3f89025855b8c770def724681cf1f9e08ebc
-
SHA256
53d3b342d5eee0b5ca3e5980fb08cba8fc1df36d3d6cf8511b34f1056bf777e3
-
SHA512
dbb08e91c9f7b694f579e4b4eb6f91baf103105822777625b06db06ee8eeab524b41c17e32609cfb00c667045833199f60fe69d1d25da1499b456e5b07155ebc
-
SSDEEP
768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJ3i:xj+VGMOtEvwDpjubwQEIiVmkO
Malware Config
Targets
-
-
Target
2024-02-11_f22d11a42bb161d7b0d652fa628536c3_cryptolocker
-
Size
93KB
-
MD5
f22d11a42bb161d7b0d652fa628536c3
-
SHA1
616e3f89025855b8c770def724681cf1f9e08ebc
-
SHA256
53d3b342d5eee0b5ca3e5980fb08cba8fc1df36d3d6cf8511b34f1056bf777e3
-
SHA512
dbb08e91c9f7b694f579e4b4eb6f91baf103105822777625b06db06ee8eeab524b41c17e32609cfb00c667045833199f60fe69d1d25da1499b456e5b07155ebc
-
SSDEEP
768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJ3i:xj+VGMOtEvwDpjubwQEIiVmkO
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Detects executables built or packed with MPress PE compressor
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-