General
-
Target
2024-02-22_bc8095797850e812fbd738d5c84a52c8_cryptolocker
-
Size
40KB
-
Sample
240222-k4kcfsfa9z
-
MD5
bc8095797850e812fbd738d5c84a52c8
-
SHA1
05a7ea1416ba237d48d629ed6f1eae278f17463a
-
SHA256
f1a8816ee5b6b71b088308e04ca53f455ad2f636e839fec9893b0a4d09489bae
-
SHA512
622c19dfc13f7d3e8b5967a2033e6bfe694bd7bd37a524988a0aa945d3c62cfd78ef383f228166f3a6857ec8f597bab389cc5b82e36c729df669ef12fe9495e1
-
SSDEEP
768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/CtXU:6j+1NMOtEvwDpjrR2XU
Malware Config
Targets
-
-
Target
2024-02-22_bc8095797850e812fbd738d5c84a52c8_cryptolocker
-
Size
40KB
-
MD5
bc8095797850e812fbd738d5c84a52c8
-
SHA1
05a7ea1416ba237d48d629ed6f1eae278f17463a
-
SHA256
f1a8816ee5b6b71b088308e04ca53f455ad2f636e839fec9893b0a4d09489bae
-
SHA512
622c19dfc13f7d3e8b5967a2033e6bfe694bd7bd37a524988a0aa945d3c62cfd78ef383f228166f3a6857ec8f597bab389cc5b82e36c729df669ef12fe9495e1
-
SSDEEP
768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/CtXU:6j+1NMOtEvwDpjrR2XU
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Detects executables built or packed with MPress PE compressor
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-