General
-
Target
2024-05-23_73e2522bc10147eb0b46ab145c1ac281_cryptolocker
-
Size
40KB
-
Sample
240523-c1ptrsaf9w
-
MD5
73e2522bc10147eb0b46ab145c1ac281
-
SHA1
257792256c6eb77af6ba0e91cc7d9bdfc9bdffa3
-
SHA256
9748b5fc6cc9e73ba4d4923f3878a4d1d857454ac4b7240add41709a249e81fe
-
SHA512
9538182be6fb011f04f5583b3c85d8f9bffed606c054687946f63e85fc159ef8bdc912d5784550db1cc663f347f84d785a239c966d6b5e4d6bef72659d854ddc
-
SSDEEP
768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITYaBIn:qDdFJy3QMOtEvwDpjjWMl7Tdc
Behavioral task
behavioral1
Sample
2024-05-23_73e2522bc10147eb0b46ab145c1ac281_cryptolocker.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
2024-05-23_73e2522bc10147eb0b46ab145c1ac281_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-05-23_73e2522bc10147eb0b46ab145c1ac281_cryptolocker
-
Size
40KB
-
MD5
73e2522bc10147eb0b46ab145c1ac281
-
SHA1
257792256c6eb77af6ba0e91cc7d9bdfc9bdffa3
-
SHA256
9748b5fc6cc9e73ba4d4923f3878a4d1d857454ac4b7240add41709a249e81fe
-
SHA512
9538182be6fb011f04f5583b3c85d8f9bffed606c054687946f63e85fc159ef8bdc912d5784550db1cc663f347f84d785a239c966d6b5e4d6bef72659d854ddc
-
SSDEEP
768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITYaBIn:qDdFJy3QMOtEvwDpjjWMl7Tdc
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-