General
-
Target
2024-05-24_45351ee660f8ad6df78cbc62de3ceb53_cryptolocker
-
Size
37KB
-
Sample
240524-e3jrmsdc25
-
MD5
45351ee660f8ad6df78cbc62de3ceb53
-
SHA1
e64992bc032a1f99a9d1319c2c63a48b2db268ba
-
SHA256
a173b4a276fe1ee16e6e7bce888abd2ea0170407b7e875eab3b79bed1efef0b0
-
SHA512
5f65317107579f9f32f1a602c725c5bbc059536748c0cd449ef3538cc3f267658376219cc3b3d69854b601b6cdeb838d4b8e375b9abed623f6d21b53850523ae
-
SSDEEP
768:qUmnjFom/kLyMro2GtOOtEvwDpjeMLam5ax+NE:qUmnpomddpMOtEvwDpjjaYar
Behavioral task
behavioral1
Sample
2024-05-24_45351ee660f8ad6df78cbc62de3ceb53_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-05-24_45351ee660f8ad6df78cbc62de3ceb53_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-05-24_45351ee660f8ad6df78cbc62de3ceb53_cryptolocker
-
Size
37KB
-
MD5
45351ee660f8ad6df78cbc62de3ceb53
-
SHA1
e64992bc032a1f99a9d1319c2c63a48b2db268ba
-
SHA256
a173b4a276fe1ee16e6e7bce888abd2ea0170407b7e875eab3b79bed1efef0b0
-
SHA512
5f65317107579f9f32f1a602c725c5bbc059536748c0cd449ef3538cc3f267658376219cc3b3d69854b601b6cdeb838d4b8e375b9abed623f6d21b53850523ae
-
SSDEEP
768:qUmnjFom/kLyMro2GtOOtEvwDpjeMLam5ax+NE:qUmnpomddpMOtEvwDpjjaYar
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-