General
-
Target
2024-06-03_fb927b0257f8582691c0e78786d686fa_cryptolocker
-
Size
54KB
-
Sample
240603-n1s2zaeg74
-
MD5
fb927b0257f8582691c0e78786d686fa
-
SHA1
284bc5b58c9f77804c23d8009be3a7ee351a8fa1
-
SHA256
10817417a5249154a07cecb83967c278d9941dea83d4d1e38a818b78bf2390fc
-
SHA512
8fc7660f22ca09e995b7202b8cfdb6f4c0e70fa29956f5d6819b0859febaf28015d9aee9466bb6c4c09b9cbaa88cd1cfff45ccecce76c23310f4524ec6df874b
-
SSDEEP
768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPhqlcnvhx5/xFRkHg:6j+1NMOtEvwDpjr8hhXiA
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-03_fb927b0257f8582691c0e78786d686fa_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-06-03_fb927b0257f8582691c0e78786d686fa_cryptolocker.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
2024-06-03_fb927b0257f8582691c0e78786d686fa_cryptolocker
-
Size
54KB
-
MD5
fb927b0257f8582691c0e78786d686fa
-
SHA1
284bc5b58c9f77804c23d8009be3a7ee351a8fa1
-
SHA256
10817417a5249154a07cecb83967c278d9941dea83d4d1e38a818b78bf2390fc
-
SHA512
8fc7660f22ca09e995b7202b8cfdb6f4c0e70fa29956f5d6819b0859febaf28015d9aee9466bb6c4c09b9cbaa88cd1cfff45ccecce76c23310f4524ec6df874b
-
SSDEEP
768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPhqlcnvhx5/xFRkHg:6j+1NMOtEvwDpjr8hhXiA
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Detects executables built or packed with MPress PE compressor
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-