General
-
Target
2024-02-14_f1b1ea9b14655d3a1139928aa6a9fb27_cryptolocker
-
Size
37KB
-
Sample
240214-wcxz1shb9t
-
MD5
f1b1ea9b14655d3a1139928aa6a9fb27
-
SHA1
09c6067109df5dfe93cd05a255b0d65abe557f24
-
SHA256
28f3d05aa8bcf28b61a88871fccc9adb7fef48d019e2bbaeb6c418b154293cb8
-
SHA512
7f219c762d9cd3986fe2ef4a29e9513fcfad5c3f1e158b06e8cc429fc4ff8fab037bdc6c654aef38044db4f4ff6f3efbe3e6e9dfc17fcd9a56852c2a5e5e63f2
-
SSDEEP
768:TS5nQJ24LR7tOOtEvwDpjGqPhqlcnv0vRt5Or:m5nkFNMOtEvwDpjG8h0Jt5Or
Malware Config
Targets
-
-
Target
2024-02-14_f1b1ea9b14655d3a1139928aa6a9fb27_cryptolocker
-
Size
37KB
-
MD5
f1b1ea9b14655d3a1139928aa6a9fb27
-
SHA1
09c6067109df5dfe93cd05a255b0d65abe557f24
-
SHA256
28f3d05aa8bcf28b61a88871fccc9adb7fef48d019e2bbaeb6c418b154293cb8
-
SHA512
7f219c762d9cd3986fe2ef4a29e9513fcfad5c3f1e158b06e8cc429fc4ff8fab037bdc6c654aef38044db4f4ff6f3efbe3e6e9dfc17fcd9a56852c2a5e5e63f2
-
SSDEEP
768:TS5nQJ24LR7tOOtEvwDpjGqPhqlcnv0vRt5Or:m5nkFNMOtEvwDpjG8h0Jt5Or
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Detects executables built or packed with MPress PE compressor
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-