General
-
Target
2024-06-01_3680952808c1332dd8ccd76d6e2d9c75_cryptolocker
-
Size
48KB
-
Sample
240601-e2kmjsad79
-
MD5
3680952808c1332dd8ccd76d6e2d9c75
-
SHA1
475c786378ad2729301ba033a187ec5e14abea32
-
SHA256
5724854283cd507a0a626e9d1b9de91da98936eea168e20058d1b8dabef4bfc3
-
SHA512
051e9f1445dad2d2abac5ace43784119f4ca3f4968b68e4300c6f1c66a2e4455b249edcab5a54b1325c7dfa19aa78c0ff99e50285de4874c2a897ad4a3abc6bc
-
SSDEEP
768:79inqyNR/QtOOtEvwDpjBKccJVODvy3Sp8Lf:79mqyNhQMOtEvwDpjBzckqSuD
Malware Config
Targets
-
-
Target
2024-06-01_3680952808c1332dd8ccd76d6e2d9c75_cryptolocker
-
Size
48KB
-
MD5
3680952808c1332dd8ccd76d6e2d9c75
-
SHA1
475c786378ad2729301ba033a187ec5e14abea32
-
SHA256
5724854283cd507a0a626e9d1b9de91da98936eea168e20058d1b8dabef4bfc3
-
SHA512
051e9f1445dad2d2abac5ace43784119f4ca3f4968b68e4300c6f1c66a2e4455b249edcab5a54b1325c7dfa19aa78c0ff99e50285de4874c2a897ad4a3abc6bc
-
SSDEEP
768:79inqyNR/QtOOtEvwDpjBKccJVODvy3Sp8Lf:79mqyNhQMOtEvwDpjBzckqSuD
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-