General
-
Target
2024-02-19_48a42198ba2910ab21c695cb061247a3_cryptolocker
-
Size
96KB
-
Sample
240219-fbybdshg3v
-
MD5
48a42198ba2910ab21c695cb061247a3
-
SHA1
8a1f3dabea1077fa16be32c8fc7e22ced8306505
-
SHA256
b266d6e55168215968ac580d707e38d8cca21d7cdd76f65dd19e44f0ab9120e6
-
SHA512
4fdbbaf4b7f8a1006762e966243e009f86758811bb23c585730cd0bc25f5944804251f54f2decba5ff20d34c25b575f998bbeb2c66e3842956c62be0ad427fef
-
SSDEEP
768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJvfT302E:xj+VGMOtEvwDpjubwQEIiVmkf0J
Malware Config
Targets
-
-
Target
2024-02-19_48a42198ba2910ab21c695cb061247a3_cryptolocker
-
Size
96KB
-
MD5
48a42198ba2910ab21c695cb061247a3
-
SHA1
8a1f3dabea1077fa16be32c8fc7e22ced8306505
-
SHA256
b266d6e55168215968ac580d707e38d8cca21d7cdd76f65dd19e44f0ab9120e6
-
SHA512
4fdbbaf4b7f8a1006762e966243e009f86758811bb23c585730cd0bc25f5944804251f54f2decba5ff20d34c25b575f998bbeb2c66e3842956c62be0ad427fef
-
SSDEEP
768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJvfT302E:xj+VGMOtEvwDpjubwQEIiVmkf0J
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Detects executables built or packed with MPress PE compressor
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-