General
-
Target
2024-05-23_7b560c15f88eaf4016a113fbc7e1a7c8_cryptolocker
-
Size
96KB
-
Sample
240523-a12gfsfc57
-
MD5
7b560c15f88eaf4016a113fbc7e1a7c8
-
SHA1
e4e322c2dd7a7052d516fd3a10ac2f2b0511ef9b
-
SHA256
85932fb45762996b75843ac0070727a2ac949444b9ed3d4baf0bb884cf60e1e8
-
SHA512
38d7577f62cb199df82001b9962a9e7a5e68c3ab16032388f9609c0efe4fa8c4c43962ef226352b1479c18920d668c7765a190f933ba322b240edb1d2b7ba0e7
-
SSDEEP
768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRXrZSUfFKazNclMjNUvAce:xj+VGMOtEvwDpjubwQEI8UtzNcO8Ace
Malware Config
Targets
-
-
Target
2024-05-23_7b560c15f88eaf4016a113fbc7e1a7c8_cryptolocker
-
Size
96KB
-
MD5
7b560c15f88eaf4016a113fbc7e1a7c8
-
SHA1
e4e322c2dd7a7052d516fd3a10ac2f2b0511ef9b
-
SHA256
85932fb45762996b75843ac0070727a2ac949444b9ed3d4baf0bb884cf60e1e8
-
SHA512
38d7577f62cb199df82001b9962a9e7a5e68c3ab16032388f9609c0efe4fa8c4c43962ef226352b1479c18920d668c7765a190f933ba322b240edb1d2b7ba0e7
-
SSDEEP
768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRXrZSUfFKazNclMjNUvAce:xj+VGMOtEvwDpjubwQEI8UtzNcO8Ace
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Detects executables built or packed with MPress PE compressor
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-