General
-
Target
2024-06-02_88e737bdf2ccfdcf8ae2d7a8e1f4677c_cryptolocker
-
Size
51KB
-
Sample
240602-27p6jsae9v
-
MD5
88e737bdf2ccfdcf8ae2d7a8e1f4677c
-
SHA1
79ccfb0f30578d74b3a8e514deeb1e781ce765fc
-
SHA256
a033fa0516a53ce0f57b51571232017889f5a16cfc9f201e7173aa05c8e60388
-
SHA512
71275357e0798f7905c4776ee0859ea17a58e348183104958eaec69cdedf6289fc0148112f064599fece1917660895b4cd942bb349e35aafc6155b853fe65787
-
SSDEEP
768:qmOKYQDf5XdrDmjr5tOOtEvwDpjAajFEitQbDmoSQCVUBJUkQqAHBIG05W2Mocc+:qmbhXDmjr5MOtEvwDpj5cDtKkQZQk
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-02_88e737bdf2ccfdcf8ae2d7a8e1f4677c_cryptolocker.exe
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
2024-06-02_88e737bdf2ccfdcf8ae2d7a8e1f4677c_cryptolocker.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-06-02_88e737bdf2ccfdcf8ae2d7a8e1f4677c_cryptolocker
-
Size
51KB
-
MD5
88e737bdf2ccfdcf8ae2d7a8e1f4677c
-
SHA1
79ccfb0f30578d74b3a8e514deeb1e781ce765fc
-
SHA256
a033fa0516a53ce0f57b51571232017889f5a16cfc9f201e7173aa05c8e60388
-
SHA512
71275357e0798f7905c4776ee0859ea17a58e348183104958eaec69cdedf6289fc0148112f064599fece1917660895b4cd942bb349e35aafc6155b853fe65787
-
SSDEEP
768:qmOKYQDf5XdrDmjr5tOOtEvwDpjAajFEitQbDmoSQCVUBJUkQqAHBIG05W2Mocc+:qmbhXDmjr5MOtEvwDpj5cDtKkQZQk
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-