General
-
Target
2024-05-29_28181d55e25ebc571b21ef1e9f46e83a_cryptolocker
-
Size
49KB
-
Sample
240529-g71l3adc7z
-
MD5
28181d55e25ebc571b21ef1e9f46e83a
-
SHA1
2136acfc456796bce56ee3bb66d17a4a10eb81cd
-
SHA256
0a383b16afa9646edfc84fbb8e290ec776eace22eaaeb1ceaf20841c783aa276
-
SHA512
b20dec66a495ba3ec32dfe15cff57638fc0d44538925dc90f8fb9eac1befcf5155d78e7ccad1df33258ed9f4e8be1b2c7cb6068fac7d8ff48eeca509dbcb377a
-
SSDEEP
768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLbjG9Rva/yYsm06MM:xj+VGMOtEvwDpjy+viHs7pM
Malware Config
Targets
-
-
Target
2024-05-29_28181d55e25ebc571b21ef1e9f46e83a_cryptolocker
-
Size
49KB
-
MD5
28181d55e25ebc571b21ef1e9f46e83a
-
SHA1
2136acfc456796bce56ee3bb66d17a4a10eb81cd
-
SHA256
0a383b16afa9646edfc84fbb8e290ec776eace22eaaeb1ceaf20841c783aa276
-
SHA512
b20dec66a495ba3ec32dfe15cff57638fc0d44538925dc90f8fb9eac1befcf5155d78e7ccad1df33258ed9f4e8be1b2c7cb6068fac7d8ff48eeca509dbcb377a
-
SSDEEP
768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLbjG9Rva/yYsm06MM:xj+VGMOtEvwDpjy+viHs7pM
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Detects executables built or packed with MPress PE compressor
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-