General
-
Target
2024-05-23_a05840d4736d01f3c5958ba49faab636_cryptolocker
-
Size
68KB
-
Sample
240523-c3yvfsah2v
-
MD5
a05840d4736d01f3c5958ba49faab636
-
SHA1
e932fe804e871e4ddc18792a5c8489f107e34dad
-
SHA256
ad7865a8f87213aa8274ea265dbfe63b171c0fed2dd8a8f5e3e6cefafd0d2ef5
-
SHA512
5cf748300969bb3f664d60b1bb590fe21c628703fce39acbbccc22e4cf3af1614478b4363cb3b78de08a4b8fa41bf779056d95905cd13c22377da125bd0db5e4
-
SSDEEP
768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I52kGEpE0P/xFIB:6j+1NMOtEvwDpjr8ox8UDEpN/js
Malware Config
Targets
-
-
Target
2024-05-23_a05840d4736d01f3c5958ba49faab636_cryptolocker
-
Size
68KB
-
MD5
a05840d4736d01f3c5958ba49faab636
-
SHA1
e932fe804e871e4ddc18792a5c8489f107e34dad
-
SHA256
ad7865a8f87213aa8274ea265dbfe63b171c0fed2dd8a8f5e3e6cefafd0d2ef5
-
SHA512
5cf748300969bb3f664d60b1bb590fe21c628703fce39acbbccc22e4cf3af1614478b4363cb3b78de08a4b8fa41bf779056d95905cd13c22377da125bd0db5e4
-
SSDEEP
768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I52kGEpE0P/xFIB:6j+1NMOtEvwDpjr8ox8UDEpN/js
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Detects executables built or packed with MPress PE compressor
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-