General
-
Target
2024-06-02_2f0c452c586c0b14eb1d20975a3fee6d_cryptolocker
-
Size
40KB
-
Sample
240602-f2qz1acc91
-
MD5
2f0c452c586c0b14eb1d20975a3fee6d
-
SHA1
23a90247d0f264d360d60d9f73ee6b044256f14b
-
SHA256
177841fa7c3f0490e3c87f99fa1b3846f62739b0cbc015f97766361f0b5d3ee2
-
SHA512
65daf1ef22f3244705c2268e299546da44a56e3d35faf9c85aa673428ad05be7d48b1bf6abd442805e5f629c74df11832c3bf45c35b4672f8bf7d46b76b98a68
-
SSDEEP
768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITY9sPF:qDdFJy3QMOtEvwDpjjWMl7TZ
Behavioral task
behavioral1
Sample
2024-06-02_2f0c452c586c0b14eb1d20975a3fee6d_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-06-02_2f0c452c586c0b14eb1d20975a3fee6d_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-06-02_2f0c452c586c0b14eb1d20975a3fee6d_cryptolocker
-
Size
40KB
-
MD5
2f0c452c586c0b14eb1d20975a3fee6d
-
SHA1
23a90247d0f264d360d60d9f73ee6b044256f14b
-
SHA256
177841fa7c3f0490e3c87f99fa1b3846f62739b0cbc015f97766361f0b5d3ee2
-
SHA512
65daf1ef22f3244705c2268e299546da44a56e3d35faf9c85aa673428ad05be7d48b1bf6abd442805e5f629c74df11832c3bf45c35b4672f8bf7d46b76b98a68
-
SSDEEP
768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITY9sPF:qDdFJy3QMOtEvwDpjjWMl7TZ
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-