General
-
Target
2024-05-11_0c6bc7c81709dd4ca35bf1ef97f82f32_cryptolocker
-
Size
56KB
-
Sample
240512-x933zafg72
-
MD5
0c6bc7c81709dd4ca35bf1ef97f82f32
-
SHA1
9f73b1f303071790948484e169a5d9c483cbfe4b
-
SHA256
531c61d5bd20148ec5680075329e9156582265889e1d36cd37e1652cb5ad1df0
-
SHA512
378e121afaf7a5f3fe649941d2b4befb224e8b10c3b648640d7fccf42217235975f1eef121e6306760e005a1c98b7c2a02de602ad5e1531321fe85b3dd972ca1
-
SSDEEP
768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5QJz7/e6b:6j+1NMOtEvwDpjr8oxExe6b
Malware Config
Targets
-
-
Target
2024-05-11_0c6bc7c81709dd4ca35bf1ef97f82f32_cryptolocker
-
Size
56KB
-
MD5
0c6bc7c81709dd4ca35bf1ef97f82f32
-
SHA1
9f73b1f303071790948484e169a5d9c483cbfe4b
-
SHA256
531c61d5bd20148ec5680075329e9156582265889e1d36cd37e1652cb5ad1df0
-
SHA512
378e121afaf7a5f3fe649941d2b4befb224e8b10c3b648640d7fccf42217235975f1eef121e6306760e005a1c98b7c2a02de602ad5e1531321fe85b3dd972ca1
-
SSDEEP
768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5QJz7/e6b:6j+1NMOtEvwDpjr8oxExe6b
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Detects executables built or packed with MPress PE compressor
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-