General
-
Target
2024-02-12_48422d1de467d2df58a9424f2bc1fc3b_cryptolocker
-
Size
61KB
-
Sample
240212-x32assbb3x
-
MD5
48422d1de467d2df58a9424f2bc1fc3b
-
SHA1
941925b2e47630a48eadea9b43844492b46609c9
-
SHA256
5b8a74d58a12ca9c45e1b15806f72f63a64216b8a0e6162ebfbc29630a47bf55
-
SHA512
deb06b0cf3406f5e151a1a7adb42b0085762f37cbd8beee099972d61d4340e7c1a2b9e53130c0c18b9c9181406ab7a19242e4597199db2ec30cf0c30bcfd3fcd
-
SSDEEP
1536:P8mnK6QFElP6n+gymddpMOtEvwDpjY7D3:1nK6a+qdOOtEvwDpjY
Behavioral task
behavioral1
Sample
2024-02-12_48422d1de467d2df58a9424f2bc1fc3b_cryptolocker.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
2024-02-12_48422d1de467d2df58a9424f2bc1fc3b_cryptolocker.exe
Resource
win10v2004-20231215-en
Malware Config
Targets
-
-
Target
2024-02-12_48422d1de467d2df58a9424f2bc1fc3b_cryptolocker
-
Size
61KB
-
MD5
48422d1de467d2df58a9424f2bc1fc3b
-
SHA1
941925b2e47630a48eadea9b43844492b46609c9
-
SHA256
5b8a74d58a12ca9c45e1b15806f72f63a64216b8a0e6162ebfbc29630a47bf55
-
SHA512
deb06b0cf3406f5e151a1a7adb42b0085762f37cbd8beee099972d61d4340e7c1a2b9e53130c0c18b9c9181406ab7a19242e4597199db2ec30cf0c30bcfd3fcd
-
SSDEEP
1536:P8mnK6QFElP6n+gymddpMOtEvwDpjY7D3:1nK6a+qdOOtEvwDpjY
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-