General
-
Target
2024-05-24_7cc53feada2dd3efaaeb0848dc701c42_cryptolocker
-
Size
48KB
-
Sample
240524-eadpxsbh26
-
MD5
7cc53feada2dd3efaaeb0848dc701c42
-
SHA1
960212f613a8334a1f5282d081a2f49767d5abcb
-
SHA256
d843dad0568f4aea0b7b7fad0419cbe8e2ce80331fec9f5445aaebaa0224098b
-
SHA512
7eef4a6d383bb0b3924647a8d93157743801347ebcb16ff0c825723435a9c327d441f9a03eb07bc459874b50b651e0316f7b205b855f3559eab275c34ce97b35
-
SSDEEP
384:icX+ni9VCr5nQI021q4VQBqURYp055TOtOOtEvwDpjqIGR/hHi7/OlI0G/BdmRS4:XS5nQJ24LR1bytOOtEvwDpjNbP/bm2to
Malware Config
Targets
-
-
Target
2024-05-24_7cc53feada2dd3efaaeb0848dc701c42_cryptolocker
-
Size
48KB
-
MD5
7cc53feada2dd3efaaeb0848dc701c42
-
SHA1
960212f613a8334a1f5282d081a2f49767d5abcb
-
SHA256
d843dad0568f4aea0b7b7fad0419cbe8e2ce80331fec9f5445aaebaa0224098b
-
SHA512
7eef4a6d383bb0b3924647a8d93157743801347ebcb16ff0c825723435a9c327d441f9a03eb07bc459874b50b651e0316f7b205b855f3559eab275c34ce97b35
-
SSDEEP
384:icX+ni9VCr5nQI021q4VQBqURYp055TOtOOtEvwDpjqIGR/hHi7/OlI0G/BdmRS4:XS5nQJ24LR1bytOOtEvwDpjNbP/bm2to
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Detects executables built or packed with MPress PE compressor
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-