General
-
Target
2024-03-19_edcb08067a8bfe613f6aa991c3aa8ca1_cryptolocker
-
Size
74KB
-
Sample
240319-yskqqseh3y
-
MD5
edcb08067a8bfe613f6aa991c3aa8ca1
-
SHA1
363276ed6d07014a275acb500900108a34ba7dc6
-
SHA256
f95968890984e61dd7815c0c5861480f5133a652b029018ab578995f1af1cec6
-
SHA512
60b3be7a918d0b8e1a2a1d38fa466379b954770f376989efba395f995399215aee96ad6b56e5a010cc16c082467614bd366bdc2298b0c163d7b7661b8cd23e5f
-
SSDEEP
768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRXrZSUP/:xj+VGMOtEvwDpjubwQEI8UP/
Malware Config
Targets
-
-
Target
2024-03-19_edcb08067a8bfe613f6aa991c3aa8ca1_cryptolocker
-
Size
74KB
-
MD5
edcb08067a8bfe613f6aa991c3aa8ca1
-
SHA1
363276ed6d07014a275acb500900108a34ba7dc6
-
SHA256
f95968890984e61dd7815c0c5861480f5133a652b029018ab578995f1af1cec6
-
SHA512
60b3be7a918d0b8e1a2a1d38fa466379b954770f376989efba395f995399215aee96ad6b56e5a010cc16c082467614bd366bdc2298b0c163d7b7661b8cd23e5f
-
SSDEEP
768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRXrZSUP/:xj+VGMOtEvwDpjubwQEI8UP/
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Detects executables built or packed with MPress PE compressor
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-