General
-
Target
2024-05-22_eed654b8d512f0d9c175e4709755d0da_cryptolocker
-
Size
50KB
-
Sample
240522-ddtpwaaa84
-
MD5
eed654b8d512f0d9c175e4709755d0da
-
SHA1
5a353785428efb98024654be73e23333ef0caa99
-
SHA256
967b0a294913160d043e3305e231cbd4a7452fbc827c6f6eaa835069545a6035
-
SHA512
749ec69eaef6fca07dcfe0784ea8a81da2fc8502d3ca9fee5d1fc07324059fa6cc5eccce616266e868446a5f4e32730d28286329f832846777cb8fd79f93ccab
-
SSDEEP
768:qmOKYQDf5XdrDmjr5tOOtEvwDpjAajFEitQbDmoSQCVUBJUkQqAHBIG05W2Moccl:qmbhXDmjr5MOtEvwDpj5cDtKkQZQj
Malware Config
Targets
-
-
Target
2024-05-22_eed654b8d512f0d9c175e4709755d0da_cryptolocker
-
Size
50KB
-
MD5
eed654b8d512f0d9c175e4709755d0da
-
SHA1
5a353785428efb98024654be73e23333ef0caa99
-
SHA256
967b0a294913160d043e3305e231cbd4a7452fbc827c6f6eaa835069545a6035
-
SHA512
749ec69eaef6fca07dcfe0784ea8a81da2fc8502d3ca9fee5d1fc07324059fa6cc5eccce616266e868446a5f4e32730d28286329f832846777cb8fd79f93ccab
-
SSDEEP
768:qmOKYQDf5XdrDmjr5tOOtEvwDpjAajFEitQbDmoSQCVUBJUkQqAHBIG05W2Moccl:qmbhXDmjr5MOtEvwDpj5cDtKkQZQj
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-