General
-
Target
2024-02-18_813b03dcfa6914353b748733674b7a11_cryptolocker
-
Size
54KB
-
Sample
240218-kl49xage32
-
MD5
813b03dcfa6914353b748733674b7a11
-
SHA1
3d3058d7b9f1b67b04425ebe31e5535fd48452e5
-
SHA256
aa5290ebcb30a27f13d44e57525bbb950d8a5573ae148030ad756ffef7a487bd
-
SHA512
e5e4ff6fb7abaeac76d74ccb996c79f2dc616ecf109c8831e660ae792f6670ae1442e7171f666d51df9fe77fc712f6616efb37f449cfaf7a906e0bab479bc024
-
SSDEEP
384:x0VkMq01bJ3wtEwPS8HLEh+Jagz+3be+26a4rIcVRYp055TOtOOtEvwDpjqIGR59:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbKo
Malware Config
Targets
-
-
Target
2024-02-18_813b03dcfa6914353b748733674b7a11_cryptolocker
-
Size
54KB
-
MD5
813b03dcfa6914353b748733674b7a11
-
SHA1
3d3058d7b9f1b67b04425ebe31e5535fd48452e5
-
SHA256
aa5290ebcb30a27f13d44e57525bbb950d8a5573ae148030ad756ffef7a487bd
-
SHA512
e5e4ff6fb7abaeac76d74ccb996c79f2dc616ecf109c8831e660ae792f6670ae1442e7171f666d51df9fe77fc712f6616efb37f449cfaf7a906e0bab479bc024
-
SSDEEP
384:x0VkMq01bJ3wtEwPS8HLEh+Jagz+3be+26a4rIcVRYp055TOtOOtEvwDpjqIGR59:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbKo
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Detects executables built or packed with MPress PE compressor
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-