General
-
Target
2024-03-15_2632ed3c5e84197da5dc66c2bd939377_cryptolocker
-
Size
53KB
-
Sample
240315-qsa8ashd8x
-
MD5
2632ed3c5e84197da5dc66c2bd939377
-
SHA1
7b1fbcbdaf6413f980b899298bc93c313c87ad58
-
SHA256
85dae484a87e4ce84bac8e6658fc837e08ecbb04bddb27e006807ab529efca76
-
SHA512
d32fcb387a4fe757572ca76f3b1b33a862ca6f7b0ec677fc9f7132e47e9a5a40634a6ec3133d969ebc40417a43f2c78c867eae6c3a79383027b3b4a46a6dd459
-
SSDEEP
768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5QJz74:6j+1NMOtEvwDpjr8oxEC
Malware Config
Targets
-
-
Target
2024-03-15_2632ed3c5e84197da5dc66c2bd939377_cryptolocker
-
Size
53KB
-
MD5
2632ed3c5e84197da5dc66c2bd939377
-
SHA1
7b1fbcbdaf6413f980b899298bc93c313c87ad58
-
SHA256
85dae484a87e4ce84bac8e6658fc837e08ecbb04bddb27e006807ab529efca76
-
SHA512
d32fcb387a4fe757572ca76f3b1b33a862ca6f7b0ec677fc9f7132e47e9a5a40634a6ec3133d969ebc40417a43f2c78c867eae6c3a79383027b3b4a46a6dd459
-
SSDEEP
768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5QJz74:6j+1NMOtEvwDpjr8oxEC
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Detects executables built or packed with MPress PE compressor
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-