General
-
Target
2024-03-12_ffd17b8d5d01df5cded6794360b0ad93_cryptolocker
-
Size
47KB
-
Sample
240312-mxbg3sfb3w
-
MD5
ffd17b8d5d01df5cded6794360b0ad93
-
SHA1
ae1656d905e94dc83703aa13e74bedf7490ca603
-
SHA256
8c34c25172d2297fb376c1048a1407ffb39af47219593b345212bf8966a1fa35
-
SHA512
d1b5a9d3d882e0cb7c1aa38f6bb47aa5ae80148a195806ca55a2b6fa86f5373694cfb749c89edb666872c6e79718a48844cbd95e121433cd58fa2177daafe98f
-
SSDEEP
768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPhqlcnvhx5/xFRC:6j+1NMOtEvwDpjr8hhX0
Malware Config
Targets
-
-
Target
2024-03-12_ffd17b8d5d01df5cded6794360b0ad93_cryptolocker
-
Size
47KB
-
MD5
ffd17b8d5d01df5cded6794360b0ad93
-
SHA1
ae1656d905e94dc83703aa13e74bedf7490ca603
-
SHA256
8c34c25172d2297fb376c1048a1407ffb39af47219593b345212bf8966a1fa35
-
SHA512
d1b5a9d3d882e0cb7c1aa38f6bb47aa5ae80148a195806ca55a2b6fa86f5373694cfb749c89edb666872c6e79718a48844cbd95e121433cd58fa2177daafe98f
-
SSDEEP
768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPhqlcnvhx5/xFRC:6j+1NMOtEvwDpjr8hhX0
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Detects executables built or packed with MPress PE compressor
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-