General
-
Target
2024-02-14_140da7b92473f05fb8032234827ecd9f_cryptolocker
-
Size
62KB
-
Sample
240214-tx8wxafd7t
-
MD5
140da7b92473f05fb8032234827ecd9f
-
SHA1
9062c68e0b488bb6ae1fc86f2a131bc938f12311
-
SHA256
5b32fd9e787e32ed01cac6b08f3345cbb0faba1a8764b8ab404c7000ec2dcc19
-
SHA512
e83bd6836aa9247df69216335f06ef2598bc6517dbbc1b8be704a1f2dba439174ab413b5da8d2b3ab49293571b73fc9d2de30f4044c2df4e367f83c58ebd857b
-
SSDEEP
768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I52kGE1s:6j+1NMOtEvwDpjr8ox8UDE6
Malware Config
Targets
-
-
Target
2024-02-14_140da7b92473f05fb8032234827ecd9f_cryptolocker
-
Size
62KB
-
MD5
140da7b92473f05fb8032234827ecd9f
-
SHA1
9062c68e0b488bb6ae1fc86f2a131bc938f12311
-
SHA256
5b32fd9e787e32ed01cac6b08f3345cbb0faba1a8764b8ab404c7000ec2dcc19
-
SHA512
e83bd6836aa9247df69216335f06ef2598bc6517dbbc1b8be704a1f2dba439174ab413b5da8d2b3ab49293571b73fc9d2de30f4044c2df4e367f83c58ebd857b
-
SSDEEP
768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I52kGE1s:6j+1NMOtEvwDpjr8ox8UDE6
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Detects executables built or packed with MPress PE compressor
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-