General
-
Target
2024-06-02_ce0bc33b1be366bd9c78203c5eb2284c_cryptolocker
-
Size
46KB
-
Sample
240602-2b8b9ahc2v
-
MD5
ce0bc33b1be366bd9c78203c5eb2284c
-
SHA1
d2c1d442c3c12e29bc22f101228b52f2c6ead7eb
-
SHA256
a48fddcea40c32aa02ea65abafc82cd8831e1b7fe070fa1698f35fddf29bebb5
-
SHA512
7b54889ac67915ea67d8b5b9e1423a62faf192d0d3c666ca7fe1f33824172b30f9e64283a154e5644df1607874c884faac3057c4a6300985f98113b429b0d2c4
-
SSDEEP
768:qmOKYQDf5XdrDmjr5tOOtEvwDpjAajFEitQbDmoSQCVUBJUkQqAHBIG05W2MoL0:qmbhXDmjr5MOtEvwDpj5cDtKkQZQq
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-02_ce0bc33b1be366bd9c78203c5eb2284c_cryptolocker.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
2024-06-02_ce0bc33b1be366bd9c78203c5eb2284c_cryptolocker.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
2024-06-02_ce0bc33b1be366bd9c78203c5eb2284c_cryptolocker
-
Size
46KB
-
MD5
ce0bc33b1be366bd9c78203c5eb2284c
-
SHA1
d2c1d442c3c12e29bc22f101228b52f2c6ead7eb
-
SHA256
a48fddcea40c32aa02ea65abafc82cd8831e1b7fe070fa1698f35fddf29bebb5
-
SHA512
7b54889ac67915ea67d8b5b9e1423a62faf192d0d3c666ca7fe1f33824172b30f9e64283a154e5644df1607874c884faac3057c4a6300985f98113b429b0d2c4
-
SSDEEP
768:qmOKYQDf5XdrDmjr5tOOtEvwDpjAajFEitQbDmoSQCVUBJUkQqAHBIG05W2MoL0:qmbhXDmjr5MOtEvwDpj5cDtKkQZQq
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-