General
-
Target
2024-02-12_92b44da8c76379fa5a1ee898d48654d4_cryptolocker
-
Size
46KB
-
Sample
240212-yv9smsbd9t
-
MD5
92b44da8c76379fa5a1ee898d48654d4
-
SHA1
896cfa13724e72eea029c45e8cb77b62a85ff450
-
SHA256
c9c6eacbf5f45fbcf1fa82da42f30df7410a5fb8e6d09625df820a8c8f4ff0e0
-
SHA512
7b7b4e105e59790082fd811ea2933dffef9a28fab1fa92b524063ff3de84f28728f5fd3449d3388b2f115788fe19fd6a30bd6ccd4531bd6f2cb42609d0f28976
-
SSDEEP
768:qmOKYQDf5XdrDmjr5tOOtEvwDpjAajFEitQbDmoSQCVUBJUkQqAHBIG05WTBV:qmbhXDmjr5MOtEvwDpj5cDtKkQZQ6z
Malware Config
Targets
-
-
Target
2024-02-12_92b44da8c76379fa5a1ee898d48654d4_cryptolocker
-
Size
46KB
-
MD5
92b44da8c76379fa5a1ee898d48654d4
-
SHA1
896cfa13724e72eea029c45e8cb77b62a85ff450
-
SHA256
c9c6eacbf5f45fbcf1fa82da42f30df7410a5fb8e6d09625df820a8c8f4ff0e0
-
SHA512
7b7b4e105e59790082fd811ea2933dffef9a28fab1fa92b524063ff3de84f28728f5fd3449d3388b2f115788fe19fd6a30bd6ccd4531bd6f2cb42609d0f28976
-
SSDEEP
768:qmOKYQDf5XdrDmjr5tOOtEvwDpjAajFEitQbDmoSQCVUBJUkQqAHBIG05WTBV:qmbhXDmjr5MOtEvwDpj5cDtKkQZQ6z
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-