General
-
Target
2024-05-22_3a1e9ac1be4c43bfd80cbcf136c94944_cryptolocker
-
Size
68KB
-
Sample
240522-3dlrpsda3w
-
MD5
3a1e9ac1be4c43bfd80cbcf136c94944
-
SHA1
937fc03d410cbff66c3bd2da3ab481d0b2b6436e
-
SHA256
c068b877c04922013b0e1448dfa9a992678b7aebb9c291a2ccd983d4eaea22b2
-
SHA512
0b8024f5a3673b1e7022f6464d7b337b72d7c136a6eff2a1111d8660e464ff5e9fd9e4f9a94cee5c7fb704b57734cabe55063340e573ea4ced8f5f7017cf33c3
-
SSDEEP
768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I52kGEpE0P/xFI0:6j+1NMOtEvwDpjr8ox8UDEpN/jh
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-22_3a1e9ac1be4c43bfd80cbcf136c94944_cryptolocker.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
2024-05-22_3a1e9ac1be4c43bfd80cbcf136c94944_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-05-22_3a1e9ac1be4c43bfd80cbcf136c94944_cryptolocker
-
Size
68KB
-
MD5
3a1e9ac1be4c43bfd80cbcf136c94944
-
SHA1
937fc03d410cbff66c3bd2da3ab481d0b2b6436e
-
SHA256
c068b877c04922013b0e1448dfa9a992678b7aebb9c291a2ccd983d4eaea22b2
-
SHA512
0b8024f5a3673b1e7022f6464d7b337b72d7c136a6eff2a1111d8660e464ff5e9fd9e4f9a94cee5c7fb704b57734cabe55063340e573ea4ced8f5f7017cf33c3
-
SSDEEP
768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I52kGEpE0P/xFI0:6j+1NMOtEvwDpjr8ox8UDEpN/jh
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Detects executables built or packed with MPress PE compressor
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-