General
-
Target
2024-04-18_c2a338a15e4ffee7563b5a85ed19bf1f_cryptolocker
-
Size
52KB
-
Sample
240418-jweassgg7s
-
MD5
c2a338a15e4ffee7563b5a85ed19bf1f
-
SHA1
058cd05e413fcc48cb4608ac10313437bdefde54
-
SHA256
aaca91146b3d02bccf52e5fafc19d4e05904937f02c72a3ada0bf9aee8746bb6
-
SHA512
0ab7db99942319bcf9efee799ba7695e53ed3af42149895cc939212b46de330ccea5e940af6ac933fa1a712005c640528f6540adb838634260483a08dc3d0cc6
-
SSDEEP
768:z6LsoEEeegiZPvEhHSG+gzum/kLyMro2GtOOtEvwDpj/YY1J+OTOF:z6QFElP6n+gKmddpMOtEvwDpj31iF
Behavioral task
behavioral1
Sample
2024-04-18_c2a338a15e4ffee7563b5a85ed19bf1f_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-04-18_c2a338a15e4ffee7563b5a85ed19bf1f_cryptolocker.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-04-18_c2a338a15e4ffee7563b5a85ed19bf1f_cryptolocker
-
Size
52KB
-
MD5
c2a338a15e4ffee7563b5a85ed19bf1f
-
SHA1
058cd05e413fcc48cb4608ac10313437bdefde54
-
SHA256
aaca91146b3d02bccf52e5fafc19d4e05904937f02c72a3ada0bf9aee8746bb6
-
SHA512
0ab7db99942319bcf9efee799ba7695e53ed3af42149895cc939212b46de330ccea5e940af6ac933fa1a712005c640528f6540adb838634260483a08dc3d0cc6
-
SSDEEP
768:z6LsoEEeegiZPvEhHSG+gzum/kLyMro2GtOOtEvwDpj/YY1J+OTOF:z6QFElP6n+gKmddpMOtEvwDpj31iF
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-