General
-
Target
2024-02-28_22db295c21965e0b8eb752017bddde98_cryptolocker
-
Size
62KB
-
Sample
240228-nlh88aae4x
-
MD5
22db295c21965e0b8eb752017bddde98
-
SHA1
68c2445ec6246780f4edb19357d2ed46ae106f05
-
SHA256
570b4abb5171cbadb1379d401f87d8741a7465715d844064fd85a656661ab1c2
-
SHA512
c4e9742200e5c2f1705a82c6aabb0ab4da9260f10d6a8ad5de261efe2cab0b442ffd349186c8699d0b7f9715a6306fb44e0f61850aaea5a9dea9e69798c1fb16
-
SSDEEP
768:P8mnjO6LsoEEeegiZPvEhHSG+gbum/kLyMro2GtOOtEvwDpjKvWxHCbSVaFn0jKv:P8mnK6QFElP6n+gymddpMOtEvwDpjYJ
Malware Config
Targets
-
-
Target
2024-02-28_22db295c21965e0b8eb752017bddde98_cryptolocker
-
Size
62KB
-
MD5
22db295c21965e0b8eb752017bddde98
-
SHA1
68c2445ec6246780f4edb19357d2ed46ae106f05
-
SHA256
570b4abb5171cbadb1379d401f87d8741a7465715d844064fd85a656661ab1c2
-
SHA512
c4e9742200e5c2f1705a82c6aabb0ab4da9260f10d6a8ad5de261efe2cab0b442ffd349186c8699d0b7f9715a6306fb44e0f61850aaea5a9dea9e69798c1fb16
-
SSDEEP
768:P8mnjO6LsoEEeegiZPvEhHSG+gbum/kLyMro2GtOOtEvwDpjKvWxHCbSVaFn0jKv:P8mnK6QFElP6n+gymddpMOtEvwDpjYJ
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-