General
-
Target
2024-03-25_9faf328f7b247ac8e9ed84164497285f_cryptolocker
-
Size
80KB
-
Sample
240325-rvavzsdf5v
-
MD5
9faf328f7b247ac8e9ed84164497285f
-
SHA1
736737666ae839a7cd5f176788cc5d516e039e2c
-
SHA256
bc1406c0f2b353ad994096c616eb269b760c443335b219a7a5a16b801ea16505
-
SHA512
710e296f4e768b4d213f387c214c8f20d0b53da97d958c4d1e501325ba2f6f32c4770466e91b2194aa507a53bcdb8330959b2c5097e8dabfa390ac0ed38ec747
-
SSDEEP
1536:V6QFElP6n+gMQMOtEvwDpjyaLccVNlmnF:V6a+pOtEvwDpjvp0
Malware Config
Targets
-
-
Target
2024-03-25_9faf328f7b247ac8e9ed84164497285f_cryptolocker
-
Size
80KB
-
MD5
9faf328f7b247ac8e9ed84164497285f
-
SHA1
736737666ae839a7cd5f176788cc5d516e039e2c
-
SHA256
bc1406c0f2b353ad994096c616eb269b760c443335b219a7a5a16b801ea16505
-
SHA512
710e296f4e768b4d213f387c214c8f20d0b53da97d958c4d1e501325ba2f6f32c4770466e91b2194aa507a53bcdb8330959b2c5097e8dabfa390ac0ed38ec747
-
SSDEEP
1536:V6QFElP6n+gMQMOtEvwDpjyaLccVNlmnF:V6a+pOtEvwDpjvp0
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-