General
-
Target
2024-03-08_7f3329a952ab6285632941caec49a069_cryptolocker
-
Size
41KB
-
Sample
240308-yb9zasfc91
-
MD5
7f3329a952ab6285632941caec49a069
-
SHA1
93b01c66fbcf1defb9834d315fb61060b5633ebd
-
SHA256
f0f1326f42c64fb7d69b6e226139e3be52b06d45e6bce206894977bfde77d274
-
SHA512
70d64aa344226e1fc838b2ab776daec11bfc0e58e176980b7be6054225bb7fc6a956b28eeaf8dd5b897e72194d34247d931d13a38cd5e94ea3404e488d199605
-
SSDEEP
768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/CtXfNg:6j+1NMOtEvwDpjrR2XfNg
Malware Config
Targets
-
-
Target
2024-03-08_7f3329a952ab6285632941caec49a069_cryptolocker
-
Size
41KB
-
MD5
7f3329a952ab6285632941caec49a069
-
SHA1
93b01c66fbcf1defb9834d315fb61060b5633ebd
-
SHA256
f0f1326f42c64fb7d69b6e226139e3be52b06d45e6bce206894977bfde77d274
-
SHA512
70d64aa344226e1fc838b2ab776daec11bfc0e58e176980b7be6054225bb7fc6a956b28eeaf8dd5b897e72194d34247d931d13a38cd5e94ea3404e488d199605
-
SSDEEP
768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/CtXfNg:6j+1NMOtEvwDpjrR2XfNg
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Detects executables built or packed with MPress PE compressor
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-