General
-
Target
2024-02-23_45b238038172335d7ca2678d28582407_cryptolocker
-
Size
96KB
-
Sample
240223-v4cygsfa6x
-
MD5
45b238038172335d7ca2678d28582407
-
SHA1
229a75c7b44f3eb0c3deff98eff3e8afb4855cfd
-
SHA256
3be4e875da12e625dead0a441c60e4119005f7ed574f7ab590d6badb983a1fa8
-
SHA512
932b5295ee469abc1fab308119e95c2207454b58a8a281b80b6ed6d90a02a5ac0cca1b24990f907a5676a37336388164d2a92596321763929d2d2a3bcc2c00b2
-
SSDEEP
768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJvfT3Y:xj+VGMOtEvwDpjubwQEIiVmkfY
Malware Config
Targets
-
-
Target
2024-02-23_45b238038172335d7ca2678d28582407_cryptolocker
-
Size
96KB
-
MD5
45b238038172335d7ca2678d28582407
-
SHA1
229a75c7b44f3eb0c3deff98eff3e8afb4855cfd
-
SHA256
3be4e875da12e625dead0a441c60e4119005f7ed574f7ab590d6badb983a1fa8
-
SHA512
932b5295ee469abc1fab308119e95c2207454b58a8a281b80b6ed6d90a02a5ac0cca1b24990f907a5676a37336388164d2a92596321763929d2d2a3bcc2c00b2
-
SSDEEP
768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJvfT3Y:xj+VGMOtEvwDpjubwQEIiVmkfY
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Detects executables built or packed with MPress PE compressor
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-