General
-
Target
2024-05-21_fce3f4ffbdb7bf126a43adaa07b51073_cryptolocker
-
Size
48KB
-
Sample
240521-yhkb8agd94
-
MD5
fce3f4ffbdb7bf126a43adaa07b51073
-
SHA1
77f80819692755cccb144e0234afeedaa9e9718b
-
SHA256
996640bdc2e1387cb545be3db20ca8e4ff5085544586fe5e52710f4cb5d0ec8e
-
SHA512
042c13f63e5bfe498086accf2db1ef79c3ec5ed937c0342947a8df01937309b78b17b41e9a9842f873d47c11db7be0d0a28fc3038aa693719bbbff10149619bd
-
SSDEEP
768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLbjG9RzhwaRh+Epc:xj+VGMOtEvwDpjy+TRh+Eu
Malware Config
Targets
-
-
Target
2024-05-21_fce3f4ffbdb7bf126a43adaa07b51073_cryptolocker
-
Size
48KB
-
MD5
fce3f4ffbdb7bf126a43adaa07b51073
-
SHA1
77f80819692755cccb144e0234afeedaa9e9718b
-
SHA256
996640bdc2e1387cb545be3db20ca8e4ff5085544586fe5e52710f4cb5d0ec8e
-
SHA512
042c13f63e5bfe498086accf2db1ef79c3ec5ed937c0342947a8df01937309b78b17b41e9a9842f873d47c11db7be0d0a28fc3038aa693719bbbff10149619bd
-
SSDEEP
768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLbjG9RzhwaRh+Epc:xj+VGMOtEvwDpjy+TRh+Eu
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Detects executables built or packed with MPress PE compressor
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-