General
-
Target
2024-02-12_3611c86ba46155a7f2dfdaaa594cd0d0_cryptolocker
-
Size
34KB
-
Sample
240212-w2ql8sce76
-
MD5
3611c86ba46155a7f2dfdaaa594cd0d0
-
SHA1
3d26a287cd6d79f7b244e3cbec1256b1525f8bb0
-
SHA256
6f74737d6daaaa81dc377da5b70b96db9d56490f169a5294117b2b00760ae70f
-
SHA512
9cfc39309bf3904343af4287b5f3dff0823c3cdbaba991f0da656aef5c844f2691245ffd08e72dd66f72bf2892e62a3a20cd268dc2a0d51f0dac328987f822ad
-
SSDEEP
768:qUmnjFom/kLyMro2GtOOtEvwDpjeMLam5axKpH:qUmnpomddpMOtEvwDpjjaYai
Behavioral task
behavioral1
Sample
2024-02-12_3611c86ba46155a7f2dfdaaa594cd0d0_cryptolocker.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
2024-02-12_3611c86ba46155a7f2dfdaaa594cd0d0_cryptolocker.exe
Resource
win10v2004-20231215-en
Malware Config
Targets
-
-
Target
2024-02-12_3611c86ba46155a7f2dfdaaa594cd0d0_cryptolocker
-
Size
34KB
-
MD5
3611c86ba46155a7f2dfdaaa594cd0d0
-
SHA1
3d26a287cd6d79f7b244e3cbec1256b1525f8bb0
-
SHA256
6f74737d6daaaa81dc377da5b70b96db9d56490f169a5294117b2b00760ae70f
-
SHA512
9cfc39309bf3904343af4287b5f3dff0823c3cdbaba991f0da656aef5c844f2691245ffd08e72dd66f72bf2892e62a3a20cd268dc2a0d51f0dac328987f822ad
-
SSDEEP
768:qUmnjFom/kLyMro2GtOOtEvwDpjeMLam5axKpH:qUmnpomddpMOtEvwDpjjaYai
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-