General
-
Target
2024-04-17_c57c35215277cbf4d7f1ff3dc8658404_cryptolocker
-
Size
37KB
-
Sample
240417-yc91pacb77
-
MD5
c57c35215277cbf4d7f1ff3dc8658404
-
SHA1
66d73d4dad038d13a15fff87e8eef25f127c2716
-
SHA256
bd40050a02be373c2d4e528e162e3853bfde18f0e5da1b78612c69909d4f3a5e
-
SHA512
63176d02a2b8f191892a75cae4b48a24a0f520d69a02a36ac5c926de4220c972a0727f6978d3fa56e666400b3e652267313062f594ff08a9d465b5018bb41c85
-
SSDEEP
768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITYKW:qDdFJy3QMOtEvwDpjjWMl7TLW
Malware Config
Targets
-
-
Target
2024-04-17_c57c35215277cbf4d7f1ff3dc8658404_cryptolocker
-
Size
37KB
-
MD5
c57c35215277cbf4d7f1ff3dc8658404
-
SHA1
66d73d4dad038d13a15fff87e8eef25f127c2716
-
SHA256
bd40050a02be373c2d4e528e162e3853bfde18f0e5da1b78612c69909d4f3a5e
-
SHA512
63176d02a2b8f191892a75cae4b48a24a0f520d69a02a36ac5c926de4220c972a0727f6978d3fa56e666400b3e652267313062f594ff08a9d465b5018bb41c85
-
SSDEEP
768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITYKW:qDdFJy3QMOtEvwDpjjWMl7TLW
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-