General
-
Target
2024-03-07_862530bf02c1a4fd56dee8a469559ff6_cryptolocker
-
Size
61KB
-
Sample
240307-c48faaee3t
-
MD5
862530bf02c1a4fd56dee8a469559ff6
-
SHA1
cd8e2bbf6aa5c9644c8963a250f7a2e44441cf52
-
SHA256
e93fda3dbc4650ff23497aa25b8405df6e10b927099803fefaca1c4c2c0faaca
-
SHA512
cd7a13b64e0fdd30fa7feb61e57b8b5de132612b9c51005ce61d892aa02b1d37ff2fb0d5d83a7bd020c7fb0d6ccb19f3e2ae43930ba4bcfb7aae219610f15df0
-
SSDEEP
768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I52kGEO10Kwg:6j+1NMOtEvwDpjr8ox8UDEy0Kwg
Malware Config
Targets
-
-
Target
2024-03-07_862530bf02c1a4fd56dee8a469559ff6_cryptolocker
-
Size
61KB
-
MD5
862530bf02c1a4fd56dee8a469559ff6
-
SHA1
cd8e2bbf6aa5c9644c8963a250f7a2e44441cf52
-
SHA256
e93fda3dbc4650ff23497aa25b8405df6e10b927099803fefaca1c4c2c0faaca
-
SHA512
cd7a13b64e0fdd30fa7feb61e57b8b5de132612b9c51005ce61d892aa02b1d37ff2fb0d5d83a7bd020c7fb0d6ccb19f3e2ae43930ba4bcfb7aae219610f15df0
-
SSDEEP
768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I52kGEO10Kwg:6j+1NMOtEvwDpjr8ox8UDEy0Kwg
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Detects executables built or packed with MPress PE compressor
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-