General
-
Target
2024-05-23_0cd7e81faf9c27f078ec2bce27242d2c_cryptolocker
-
Size
24KB
-
Sample
240523-ct188aad6s
-
MD5
0cd7e81faf9c27f078ec2bce27242d2c
-
SHA1
ca2ff83a6b5419544506d35b330ccd3641084f36
-
SHA256
db0420194c3838bbe6594eb967885752838b09946e57e76c300a576061c986db
-
SHA512
b19126af58903c9110d39366003668871d1ecf81cd1574355be92d857f2b5fac7f8beecf7d7ef984143d5cd05264a505627862cd436e95ce0d4b24d78774e6e6
-
SSDEEP
384:bVCPwFRuFn65arz1ZhdaXFXSCVQTLfjDp6HMJ2C:bVCPwFRo6CpwXFXSqQXfjAsJ9
Behavioral task
behavioral1
Sample
2024-05-23_0cd7e81faf9c27f078ec2bce27242d2c_cryptolocker.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
2024-05-23_0cd7e81faf9c27f078ec2bce27242d2c_cryptolocker.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-05-23_0cd7e81faf9c27f078ec2bce27242d2c_cryptolocker
-
Size
24KB
-
MD5
0cd7e81faf9c27f078ec2bce27242d2c
-
SHA1
ca2ff83a6b5419544506d35b330ccd3641084f36
-
SHA256
db0420194c3838bbe6594eb967885752838b09946e57e76c300a576061c986db
-
SHA512
b19126af58903c9110d39366003668871d1ecf81cd1574355be92d857f2b5fac7f8beecf7d7ef984143d5cd05264a505627862cd436e95ce0d4b24d78774e6e6
-
SSDEEP
384:bVCPwFRuFn65arz1ZhdaXFXSCVQTLfjDp6HMJ2C:bVCPwFRo6CpwXFXSqQXfjAsJ9
Score9/10-
Detection of CryptoLocker Variants
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-