General
-
Target
2024-05-21_8a567e903f1ee58f3adedad7af91615d_cryptolocker
-
Size
73KB
-
Sample
240521-s7m7hsag74
-
MD5
8a567e903f1ee58f3adedad7af91615d
-
SHA1
d4a5ad75fd61c9249320e5bebe0be2dab161eb9c
-
SHA256
e23a2cdea897898749b4ab1d0a83d11b801428db5139eaae27c24c7841ffbc33
-
SHA512
7fe610702d3ad2843557ee59d5cf51c5bbeb1bcf738ed1a89b39c1537ed3ecb2485eb3270c1c1a6aaedf42687ef7723dc9db8c4762026baf17c9547250e188f0
-
SSDEEP
1536:nj+4zs2cPVhlMOtEvwDpj4H8u8rZVTs9Vf:C4Q2c94OtEvwDpj4H8zM
Malware Config
Targets
-
-
Target
2024-05-21_8a567e903f1ee58f3adedad7af91615d_cryptolocker
-
Size
73KB
-
MD5
8a567e903f1ee58f3adedad7af91615d
-
SHA1
d4a5ad75fd61c9249320e5bebe0be2dab161eb9c
-
SHA256
e23a2cdea897898749b4ab1d0a83d11b801428db5139eaae27c24c7841ffbc33
-
SHA512
7fe610702d3ad2843557ee59d5cf51c5bbeb1bcf738ed1a89b39c1537ed3ecb2485eb3270c1c1a6aaedf42687ef7723dc9db8c4762026baf17c9547250e188f0
-
SSDEEP
1536:nj+4zs2cPVhlMOtEvwDpj4H8u8rZVTs9Vf:C4Q2c94OtEvwDpj4H8zM
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-