General
-
Target
2024-03-05_273b91fde46049f88d4cbfcd93e965e9_cryptolocker
-
Size
47KB
-
Sample
240305-le15cabe41
-
MD5
273b91fde46049f88d4cbfcd93e965e9
-
SHA1
ee802cbf1f6bb9f91557b4fdef2d862450be893e
-
SHA256
7b3fcfc8fee29e2eb730667970602dad44232706f52fdd5dbd14a075e17951a7
-
SHA512
6a5ea8bbdb654d6d6debdb2011644e35090de9abe8618a023cf51c91a96efd22ef41acac7fdf5c5f78e08139ca9f3b90166568bf7b59b6e465145b6793c52181
-
SSDEEP
768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLbjG9RzhwaN4kf:xj+VGMOtEvwDpjy+TN4s
Malware Config
Targets
-
-
Target
2024-03-05_273b91fde46049f88d4cbfcd93e965e9_cryptolocker
-
Size
47KB
-
MD5
273b91fde46049f88d4cbfcd93e965e9
-
SHA1
ee802cbf1f6bb9f91557b4fdef2d862450be893e
-
SHA256
7b3fcfc8fee29e2eb730667970602dad44232706f52fdd5dbd14a075e17951a7
-
SHA512
6a5ea8bbdb654d6d6debdb2011644e35090de9abe8618a023cf51c91a96efd22ef41acac7fdf5c5f78e08139ca9f3b90166568bf7b59b6e465145b6793c52181
-
SSDEEP
768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLbjG9RzhwaN4kf:xj+VGMOtEvwDpjy+TN4s
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Detects executables built or packed with MPress PE compressor
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-