General
-
Target
2024-05-24_367b343fbc598573c473a8fc4e543043_cryptolocker
-
Size
53KB
-
Sample
240524-e2q5bsdb75
-
MD5
367b343fbc598573c473a8fc4e543043
-
SHA1
40a934f0e3f4df9fca30674224160ebb90dc2e46
-
SHA256
4a7fe87eb8c2c28f09ddb5499812f8fb82ae02c3532a385d0f11068cc0a97009
-
SHA512
49402ef88fa8680e7822d083400f5695f1b51526508f11cfc8f43e5118e24ac5ce29eb302099d93221f532ce329c8daa03c931f5fe82ca5d7b02fba71e1a4ed6
-
SSDEEP
768:z6LsoEEeegiZPvEhHSG+gzum/kLyMro2GtOOtEvwDpj/YY1J+OTOkgq:z6QFElP6n+gKmddpMOtEvwDpj31ikgq
Behavioral task
behavioral1
Sample
2024-05-24_367b343fbc598573c473a8fc4e543043_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-05-24_367b343fbc598573c473a8fc4e543043_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-05-24_367b343fbc598573c473a8fc4e543043_cryptolocker
-
Size
53KB
-
MD5
367b343fbc598573c473a8fc4e543043
-
SHA1
40a934f0e3f4df9fca30674224160ebb90dc2e46
-
SHA256
4a7fe87eb8c2c28f09ddb5499812f8fb82ae02c3532a385d0f11068cc0a97009
-
SHA512
49402ef88fa8680e7822d083400f5695f1b51526508f11cfc8f43e5118e24ac5ce29eb302099d93221f532ce329c8daa03c931f5fe82ca5d7b02fba71e1a4ed6
-
SSDEEP
768:z6LsoEEeegiZPvEhHSG+gzum/kLyMro2GtOOtEvwDpj/YY1J+OTOkgq:z6QFElP6n+gKmddpMOtEvwDpj31ikgq
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-