General
-
Target
2024-04-30_f59860bcce86b3e74ee2870169a31702_cryptolocker
-
Size
127KB
-
Sample
240430-cgakqshg4x
-
MD5
f59860bcce86b3e74ee2870169a31702
-
SHA1
527c738aa249fa603fbdba6aed35b5f0caed95ed
-
SHA256
fc4179b91d8139265bfd0ec5a39b426699e0561f9b721395ff2f01e4421164cf
-
SHA512
b86f7631f6576c2ad9f96ec96a76308de68ad8d436fa5a74a3d1405ca3f0b353d5b8b6aa42883f47b0b85a34d3a8547807b90219ca60c2062a750c1b44c115d5
-
SSDEEP
1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfIuBKLUYOVbvh//LIT8:vCjsIOtEvwDpj5H9YvQd2Rt
Malware Config
Targets
-
-
Target
2024-04-30_f59860bcce86b3e74ee2870169a31702_cryptolocker
-
Size
127KB
-
MD5
f59860bcce86b3e74ee2870169a31702
-
SHA1
527c738aa249fa603fbdba6aed35b5f0caed95ed
-
SHA256
fc4179b91d8139265bfd0ec5a39b426699e0561f9b721395ff2f01e4421164cf
-
SHA512
b86f7631f6576c2ad9f96ec96a76308de68ad8d436fa5a74a3d1405ca3f0b353d5b8b6aa42883f47b0b85a34d3a8547807b90219ca60c2062a750c1b44c115d5
-
SSDEEP
1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfIuBKLUYOVbvh//LIT8:vCjsIOtEvwDpj5H9YvQd2Rt
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-