General
-
Target
2024-03-07_7b6c724cc105833462861b8ba18faab6_cryptolocker
-
Size
46KB
-
Sample
240307-c42bzade34
-
MD5
7b6c724cc105833462861b8ba18faab6
-
SHA1
7e28e0834ab0e9edd8a42911fd230028e30d458a
-
SHA256
8ff4aa1e4fb8acf9881ce36a11b3cf6eec0e685c05cdcaeb3382739ba1d922cd
-
SHA512
525e30f4ba8d7f9616214419d09ab0e7aaed63fd4797d117aa6716b372a8bb2a8a5aee712a27794bb6f74d9e02e20920450881a74285e0655e23391cfda5ef38
-
SSDEEP
768:qmOKYQDf5XdrDmjr5tOOtEvwDpjAajFEitQbDmoSQCVUBJUkQqAHBIG05W2Mobeo:qmbhXDmjr5MOtEvwDpj5cDtKkQZQZ
Malware Config
Targets
-
-
Target
2024-03-07_7b6c724cc105833462861b8ba18faab6_cryptolocker
-
Size
46KB
-
MD5
7b6c724cc105833462861b8ba18faab6
-
SHA1
7e28e0834ab0e9edd8a42911fd230028e30d458a
-
SHA256
8ff4aa1e4fb8acf9881ce36a11b3cf6eec0e685c05cdcaeb3382739ba1d922cd
-
SHA512
525e30f4ba8d7f9616214419d09ab0e7aaed63fd4797d117aa6716b372a8bb2a8a5aee712a27794bb6f74d9e02e20920450881a74285e0655e23391cfda5ef38
-
SSDEEP
768:qmOKYQDf5XdrDmjr5tOOtEvwDpjAajFEitQbDmoSQCVUBJUkQqAHBIG05W2Mobeo:qmbhXDmjr5MOtEvwDpj5cDtKkQZQZ
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-