General
-
Target
2024-05-22_1cfd42e6c9f0ad9461d1913e11abdbf3_cryptolocker
-
Size
65KB
-
Sample
240522-y8hlbafe45
-
MD5
1cfd42e6c9f0ad9461d1913e11abdbf3
-
SHA1
a19c524b79c2e438f4cff7f5e8c6c0eca61051bf
-
SHA256
4bf47be12cee5053babe078f250cd00c42cd0c9d0bbf694e229dbfbfc703d569
-
SHA512
9d4ff4f89f970e0e12ffdfdb8f4a71aa1e79edb7211e32b44e2bfc7f3ea812f0e56401880fe240cbf1dc61935798bc17fd31fd6d8bf083ed2d61b4d8308c1ac7
-
SSDEEP
1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMTIzYH:TCjsIOtEvwDpj5HE/OUHnSMg
Malware Config
Targets
-
-
Target
2024-05-22_1cfd42e6c9f0ad9461d1913e11abdbf3_cryptolocker
-
Size
65KB
-
MD5
1cfd42e6c9f0ad9461d1913e11abdbf3
-
SHA1
a19c524b79c2e438f4cff7f5e8c6c0eca61051bf
-
SHA256
4bf47be12cee5053babe078f250cd00c42cd0c9d0bbf694e229dbfbfc703d569
-
SHA512
9d4ff4f89f970e0e12ffdfdb8f4a71aa1e79edb7211e32b44e2bfc7f3ea812f0e56401880fe240cbf1dc61935798bc17fd31fd6d8bf083ed2d61b4d8308c1ac7
-
SSDEEP
1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMTIzYH:TCjsIOtEvwDpj5HE/OUHnSMg
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-