General
-
Target
2024-02-23_ffb1b62d3b180d7a3230d9f27ffc0b4c_cryptolocker
-
Size
127KB
-
Sample
240223-cfl75sac83
-
MD5
ffb1b62d3b180d7a3230d9f27ffc0b4c
-
SHA1
7bfdf4d92c357db172148907d0019e6ac30909c8
-
SHA256
136ce04eb38eaa1badb166fdf832993675b7b8d4e9c25c4e9cd79546cb9a899d
-
SHA512
047266a9c36e227809bee2f2a0b5f3d1c3ca2e0cf3bc5b4615d0bdb8bc433893793ae0afee79d19d6037dc754ba76a4eec97d7d4f91b378feff9b9e6e04e1cf5
-
SSDEEP
1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfIuBKLUYOVbvh//fR1:vCjsIOtEvwDpj5H9YvQd2R1
Malware Config
Targets
-
-
Target
2024-02-23_ffb1b62d3b180d7a3230d9f27ffc0b4c_cryptolocker
-
Size
127KB
-
MD5
ffb1b62d3b180d7a3230d9f27ffc0b4c
-
SHA1
7bfdf4d92c357db172148907d0019e6ac30909c8
-
SHA256
136ce04eb38eaa1badb166fdf832993675b7b8d4e9c25c4e9cd79546cb9a899d
-
SHA512
047266a9c36e227809bee2f2a0b5f3d1c3ca2e0cf3bc5b4615d0bdb8bc433893793ae0afee79d19d6037dc754ba76a4eec97d7d4f91b378feff9b9e6e04e1cf5
-
SSDEEP
1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfIuBKLUYOVbvh//fR1:vCjsIOtEvwDpj5H9YvQd2R1
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-