General
-
Target
2024-02-19_e622baa6b4c3f2f9dc79cbadc2f55724_cryptolocker
-
Size
54KB
-
Sample
240219-n5fmfadd49
-
MD5
e622baa6b4c3f2f9dc79cbadc2f55724
-
SHA1
efd661cd13cfe564312cadf02ffa660539bc0102
-
SHA256
fb65b10fd176f7b8dd8e0cc40470da5c240902d82d46c6b62be46faaaf23429d
-
SHA512
3e2ae6562d45d270c47b8f8e7adbf8f498e35fbb4fb19223603fbc9d793afd23392480d87bb5a2c3ac2947f85276b69422694a1e29d6c87905f799abf072e2e9
-
SSDEEP
768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5QJz7H:6j+1NMOtEvwDpjr8oxEZ
Malware Config
Targets
-
-
Target
2024-02-19_e622baa6b4c3f2f9dc79cbadc2f55724_cryptolocker
-
Size
54KB
-
MD5
e622baa6b4c3f2f9dc79cbadc2f55724
-
SHA1
efd661cd13cfe564312cadf02ffa660539bc0102
-
SHA256
fb65b10fd176f7b8dd8e0cc40470da5c240902d82d46c6b62be46faaaf23429d
-
SHA512
3e2ae6562d45d270c47b8f8e7adbf8f498e35fbb4fb19223603fbc9d793afd23392480d87bb5a2c3ac2947f85276b69422694a1e29d6c87905f799abf072e2e9
-
SSDEEP
768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5QJz7H:6j+1NMOtEvwDpjr8oxEZ
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Detects executables built or packed with MPress PE compressor
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-