General
-
Target
2024-02-14_fe996133f004a0838a15578f3417c7c6_cryptolocker
-
Size
60KB
-
Sample
240214-re5enacf9z
-
MD5
fe996133f004a0838a15578f3417c7c6
-
SHA1
92204c4782bf56b4dfb5498e25b0bd5a36614b4d
-
SHA256
80a977eeb676c3c4a3cf2966e16f367a3b230812d2046c8d4fe75ee93116dfd8
-
SHA512
d6de8f57cec710e5f25ff206cd0a5f7c2895d4843edd613c75c34e62607c4f2824c3497677a6ee94a26af0ff05a56c403682868d461783a47c985d7818ccc5ec
-
SSDEEP
1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMTIg:TCjsIOtEvwDpj5HE/OUHnSMq
Malware Config
Targets
-
-
Target
2024-02-14_fe996133f004a0838a15578f3417c7c6_cryptolocker
-
Size
60KB
-
MD5
fe996133f004a0838a15578f3417c7c6
-
SHA1
92204c4782bf56b4dfb5498e25b0bd5a36614b4d
-
SHA256
80a977eeb676c3c4a3cf2966e16f367a3b230812d2046c8d4fe75ee93116dfd8
-
SHA512
d6de8f57cec710e5f25ff206cd0a5f7c2895d4843edd613c75c34e62607c4f2824c3497677a6ee94a26af0ff05a56c403682868d461783a47c985d7818ccc5ec
-
SSDEEP
1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMTIg:TCjsIOtEvwDpj5HE/OUHnSMq
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-