General
-
Target
2024-03-28_bab3560111ca8b41570e1a9e7213025f_cryptolocker
-
Size
47KB
-
Sample
240328-a5j3zahg64
-
MD5
bab3560111ca8b41570e1a9e7213025f
-
SHA1
a2a2945d201aee265d688e24845e3738d017a1a0
-
SHA256
1cc7478b56f8d54caeb3841054e82a5e80a7a535d3266c78d63bb2663f3111c1
-
SHA512
d78d6a856488c5b9f53956de6e2236bb7eb2dd2322d60cbe41e44973f35cd1083123ebf2fe338a561408a5f5d823193dab9da4b567d2b37903a44b8edac24722
-
SSDEEP
768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaaEqbIu556Blvo:X6QFElP6n+gJQMOtEvwDpjB0GIWSlvo
Malware Config
Targets
-
-
Target
2024-03-28_bab3560111ca8b41570e1a9e7213025f_cryptolocker
-
Size
47KB
-
MD5
bab3560111ca8b41570e1a9e7213025f
-
SHA1
a2a2945d201aee265d688e24845e3738d017a1a0
-
SHA256
1cc7478b56f8d54caeb3841054e82a5e80a7a535d3266c78d63bb2663f3111c1
-
SHA512
d78d6a856488c5b9f53956de6e2236bb7eb2dd2322d60cbe41e44973f35cd1083123ebf2fe338a561408a5f5d823193dab9da4b567d2b37903a44b8edac24722
-
SSDEEP
768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaaEqbIu556Blvo:X6QFElP6n+gJQMOtEvwDpjB0GIWSlvo
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-