General
-
Target
2024-06-01_a3e58528e26c77b6208f7bc901aa12bf_cryptolocker
-
Size
58KB
-
Sample
240601-y18grsdg6y
-
MD5
a3e58528e26c77b6208f7bc901aa12bf
-
SHA1
b3aaccc3d20ad0351f7c98a986fd359dfaee2695
-
SHA256
737689e60d18c194341cd5a1acfb80e9fa2474b7445765858d5a3c7ed46d62a7
-
SHA512
6fdc8b1109cae9b2f1f62705f2813debb310488b79caf34f1c1527f59981b2f6009066caa8ce6addd6326c7e94d4d5762c597965d10b20ce6eacaa04556e8fe6
-
SSDEEP
1536:qmbhXDmjr5MOtEvwDpj5cDtKkQZQRKb6Impy0:BbdDmjr+OtEvwDpjMX
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-01_a3e58528e26c77b6208f7bc901aa12bf_cryptolocker.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
2024-06-01_a3e58528e26c77b6208f7bc901aa12bf_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-06-01_a3e58528e26c77b6208f7bc901aa12bf_cryptolocker
-
Size
58KB
-
MD5
a3e58528e26c77b6208f7bc901aa12bf
-
SHA1
b3aaccc3d20ad0351f7c98a986fd359dfaee2695
-
SHA256
737689e60d18c194341cd5a1acfb80e9fa2474b7445765858d5a3c7ed46d62a7
-
SHA512
6fdc8b1109cae9b2f1f62705f2813debb310488b79caf34f1c1527f59981b2f6009066caa8ce6addd6326c7e94d4d5762c597965d10b20ce6eacaa04556e8fe6
-
SSDEEP
1536:qmbhXDmjr5MOtEvwDpj5cDtKkQZQRKb6Impy0:BbdDmjr+OtEvwDpjMX
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-