General
-
Target
2024-02-12_5547d59093258cd9b69aad2f239f9c93_cryptolocker
-
Size
99KB
-
Sample
240212-av5xpafb92
-
MD5
5547d59093258cd9b69aad2f239f9c93
-
SHA1
bba2a74d51134c7e5f60d586d91980c5de43657f
-
SHA256
0e617fbb09ab4f8e296cb9b6f2dcd796e6f70856efa1e3d9abc886873dc5554f
-
SHA512
fb0cde82a9dbbd283f209adaaf3f48b9cde0fc52ecc10a6601ddfc2d4f6979a556aec5b917b6e9f4b08078e61aad46d6b9f1c69b5b2c479d7f574b0e89f47e0d
-
SSDEEP
768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJHlv/k28u:xj+VGMOtEvwDpjubwQEIiVmkxv/wu
Malware Config
Targets
-
-
Target
2024-02-12_5547d59093258cd9b69aad2f239f9c93_cryptolocker
-
Size
99KB
-
MD5
5547d59093258cd9b69aad2f239f9c93
-
SHA1
bba2a74d51134c7e5f60d586d91980c5de43657f
-
SHA256
0e617fbb09ab4f8e296cb9b6f2dcd796e6f70856efa1e3d9abc886873dc5554f
-
SHA512
fb0cde82a9dbbd283f209adaaf3f48b9cde0fc52ecc10a6601ddfc2d4f6979a556aec5b917b6e9f4b08078e61aad46d6b9f1c69b5b2c479d7f574b0e89f47e0d
-
SSDEEP
768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJHlv/k28u:xj+VGMOtEvwDpjubwQEIiVmkxv/wu
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Detects executables built or packed with MPress PE compressor
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-