General
-
Target
2024-06-02_449849894a0f616b3d86e97229873924_cryptolocker
-
Size
38KB
-
Sample
240602-23j4qsbe62
-
MD5
449849894a0f616b3d86e97229873924
-
SHA1
f217419b4b4800e0979c6652d40936ca19c7f9ef
-
SHA256
406a7352ca6a0e60088798faa918d5b9f8291440809fad61de073f870f21548e
-
SHA512
23b387c585d375928387cea9739b903442744ddfec6a74cb5891aab6da597939277aeaf9a968926350442ea3fd660d6cc3e2697d0de1f52370c4b89013c42a56
-
SSDEEP
768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITY9Rq:qDdFJy3QMOtEvwDpjjWMl7Tqq
Behavioral task
behavioral1
Sample
2024-06-02_449849894a0f616b3d86e97229873924_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-06-02_449849894a0f616b3d86e97229873924_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-06-02_449849894a0f616b3d86e97229873924_cryptolocker
-
Size
38KB
-
MD5
449849894a0f616b3d86e97229873924
-
SHA1
f217419b4b4800e0979c6652d40936ca19c7f9ef
-
SHA256
406a7352ca6a0e60088798faa918d5b9f8291440809fad61de073f870f21548e
-
SHA512
23b387c585d375928387cea9739b903442744ddfec6a74cb5891aab6da597939277aeaf9a968926350442ea3fd660d6cc3e2697d0de1f52370c4b89013c42a56
-
SSDEEP
768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITY9Rq:qDdFJy3QMOtEvwDpjjWMl7Tqq
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-