General
-
Target
2024-05-22_cf7dec1995d77692e35f227c6d6f011a_cryptolocker
-
Size
64KB
-
Sample
240522-3jrj5sdc6x
-
MD5
cf7dec1995d77692e35f227c6d6f011a
-
SHA1
e3ac4779033edaeb04aab3ebe1f3043f86526bb2
-
SHA256
166526d980f9064ff11b26ab7071fcd677cf1b1f7b1161b7a6e0b0d5401e2922
-
SHA512
9fabb676cc79fc83a31e4e650154bc748a14fc4cc896e68a85d1a4b6d986c82409dbf03b0e4b9d64790c62cb87973deea822f47398529ebff77ea5efbcdb4a16
-
SSDEEP
1536:qmbhXDmjr5MOtEvwDpj5cDtKkQZQRKb61vSbgtsiQ:BbdDmjr+OtEvwDpjM8p
Malware Config
Targets
-
-
Target
2024-05-22_cf7dec1995d77692e35f227c6d6f011a_cryptolocker
-
Size
64KB
-
MD5
cf7dec1995d77692e35f227c6d6f011a
-
SHA1
e3ac4779033edaeb04aab3ebe1f3043f86526bb2
-
SHA256
166526d980f9064ff11b26ab7071fcd677cf1b1f7b1161b7a6e0b0d5401e2922
-
SHA512
9fabb676cc79fc83a31e4e650154bc748a14fc4cc896e68a85d1a4b6d986c82409dbf03b0e4b9d64790c62cb87973deea822f47398529ebff77ea5efbcdb4a16
-
SSDEEP
1536:qmbhXDmjr5MOtEvwDpj5cDtKkQZQRKb61vSbgtsiQ:BbdDmjr+OtEvwDpjM8p
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-