General
-
Target
2024-05-20_8598fbeb259f24b0dfcd99da61a501e9_cryptolocker
-
Size
67KB
-
Sample
240520-2d2mgshg48
-
MD5
8598fbeb259f24b0dfcd99da61a501e9
-
SHA1
c5767612eaa9b8b0a7bf105794fc4b427ca33054
-
SHA256
9f44736d42544966464af87570cb931b8a2c2d5fcdfe01fcdf40ce2d42845feb
-
SHA512
1ed20952b95a70b60326c7b44ac5598c0431b2cae386120dd9f9f668a46f788d57d9884fac595a3a6f4f1c2990d81be34efd4197ccdbafaee3dab96406b59c61
-
SSDEEP
768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I52kGEpE0P/xFIj:6j+1NMOtEvwDpjr8ox8UDEpN/ji
Malware Config
Targets
-
-
Target
2024-05-20_8598fbeb259f24b0dfcd99da61a501e9_cryptolocker
-
Size
67KB
-
MD5
8598fbeb259f24b0dfcd99da61a501e9
-
SHA1
c5767612eaa9b8b0a7bf105794fc4b427ca33054
-
SHA256
9f44736d42544966464af87570cb931b8a2c2d5fcdfe01fcdf40ce2d42845feb
-
SHA512
1ed20952b95a70b60326c7b44ac5598c0431b2cae386120dd9f9f668a46f788d57d9884fac595a3a6f4f1c2990d81be34efd4197ccdbafaee3dab96406b59c61
-
SSDEEP
768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I52kGEpE0P/xFIj:6j+1NMOtEvwDpjr8ox8UDEpN/ji
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Detects executables built or packed with MPress PE compressor
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-