General
-
Target
2024-05-23_1e1160d259eaec235c7e36f0c2a69749_cryptolocker
-
Size
38KB
-
Sample
240523-cv2ldaad9x
-
MD5
1e1160d259eaec235c7e36f0c2a69749
-
SHA1
4284107d223d27ab441f2b9a35160ccd811dabc5
-
SHA256
bb2bf3cd268b9baebfdc53f7388985ce6825c526d76c54fd73a7dc0867e9d32a
-
SHA512
b2761154133a1fd77871421deffeba36f2aa1cf2c66619cb227168f5aa232184abf3bf3131eacf0b925d3030d3766121179dd6a88aa17ba308f71d4bf29b93d7
-
SSDEEP
768:qUmnjFom/kLyMro2GtOOtEvwDpjeMLam5axK38nA:qUmnpomddpMOtEvwDpjjaYaQ8A
Behavioral task
behavioral1
Sample
2024-05-23_1e1160d259eaec235c7e36f0c2a69749_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-05-23_1e1160d259eaec235c7e36f0c2a69749_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-05-23_1e1160d259eaec235c7e36f0c2a69749_cryptolocker
-
Size
38KB
-
MD5
1e1160d259eaec235c7e36f0c2a69749
-
SHA1
4284107d223d27ab441f2b9a35160ccd811dabc5
-
SHA256
bb2bf3cd268b9baebfdc53f7388985ce6825c526d76c54fd73a7dc0867e9d32a
-
SHA512
b2761154133a1fd77871421deffeba36f2aa1cf2c66619cb227168f5aa232184abf3bf3131eacf0b925d3030d3766121179dd6a88aa17ba308f71d4bf29b93d7
-
SSDEEP
768:qUmnjFom/kLyMro2GtOOtEvwDpjeMLam5axK38nA:qUmnpomddpMOtEvwDpjjaYaQ8A
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-