General
-
Target
2024-05-21_713a5260b3a2c773c0f2ed212f211cae_cryptolocker
-
Size
97KB
-
Sample
240521-s5dv3aaf84
-
MD5
713a5260b3a2c773c0f2ed212f211cae
-
SHA1
e7217636b43f6ef03b7ac870bd63dc37f3427745
-
SHA256
7932b1f55477751237688481e1b73656eaf12888e58fab9c109ce872b5ba9482
-
SHA512
444ed0c366f603110c2fdcdd9f12951deb7848feee75383778f72849d5ddb386e6f3669352bdc00dc62a4ea520f9f7440a2dc37961db800751b960ec2179ceed
-
SSDEEP
1536:qkmnpomddpMOtEvwDpjJGYQbN/PKwNgp01F:AnBdOOtEvwDpj6zn
Behavioral task
behavioral1
Sample
2024-05-21_713a5260b3a2c773c0f2ed212f211cae_cryptolocker.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
2024-05-21_713a5260b3a2c773c0f2ed212f211cae_cryptolocker.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-05-21_713a5260b3a2c773c0f2ed212f211cae_cryptolocker
-
Size
97KB
-
MD5
713a5260b3a2c773c0f2ed212f211cae
-
SHA1
e7217636b43f6ef03b7ac870bd63dc37f3427745
-
SHA256
7932b1f55477751237688481e1b73656eaf12888e58fab9c109ce872b5ba9482
-
SHA512
444ed0c366f603110c2fdcdd9f12951deb7848feee75383778f72849d5ddb386e6f3669352bdc00dc62a4ea520f9f7440a2dc37961db800751b960ec2179ceed
-
SSDEEP
1536:qkmnpomddpMOtEvwDpjJGYQbN/PKwNgp01F:AnBdOOtEvwDpj6zn
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-