General
-
Target
2024-04-26_7f0a31384a847bbf23d03932810af346_cryptolocker
-
Size
38KB
-
Sample
240426-3exwcsfb4y
-
MD5
7f0a31384a847bbf23d03932810af346
-
SHA1
70968f4ae9487682aa1149408d13972db054acc3
-
SHA256
7c7855c73e0dc2c392b65c735b31ba0355f5a4475129d3ff810664602e3e16b5
-
SHA512
0d0572ae2d3bcbf74d9044d76671a9ebd3917e58af413be6d05333145ee23c02635f0d0fa7d45ad062f7d1b074b43da18dcc88b954cfb9bb4dab3556c02ed0a0
-
SSDEEP
768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITYW:qDdFJy3QMOtEvwDpjjWMl7T3
Behavioral task
behavioral1
Sample
2024-04-26_7f0a31384a847bbf23d03932810af346_cryptolocker.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
2024-04-26_7f0a31384a847bbf23d03932810af346_cryptolocker.exe
Resource
win10v2004-20240419-en
Malware Config
Targets
-
-
Target
2024-04-26_7f0a31384a847bbf23d03932810af346_cryptolocker
-
Size
38KB
-
MD5
7f0a31384a847bbf23d03932810af346
-
SHA1
70968f4ae9487682aa1149408d13972db054acc3
-
SHA256
7c7855c73e0dc2c392b65c735b31ba0355f5a4475129d3ff810664602e3e16b5
-
SHA512
0d0572ae2d3bcbf74d9044d76671a9ebd3917e58af413be6d05333145ee23c02635f0d0fa7d45ad062f7d1b074b43da18dcc88b954cfb9bb4dab3556c02ed0a0
-
SSDEEP
768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITYW:qDdFJy3QMOtEvwDpjjWMl7T3
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-