General
-
Target
2024-06-06_8cccc9dbd87ee1ef43c2bd73e980c21f_cryptolocker
-
Size
40KB
-
Sample
240606-1c9e9scc4z
-
MD5
8cccc9dbd87ee1ef43c2bd73e980c21f
-
SHA1
cefd2fe8c5ebadab9db508de004abf33b35ce54b
-
SHA256
d4edf2c5f41989e17c624e3a9d62f68b9bd9828d539a3549aeca5af3d3a7c671
-
SHA512
63bc5b8efab04596f85bd43380d9ead95de1262bc783133f1444083235cee02e3491166538d18839999928dd78dab7c97f98969de6970926e59a0a4bb77397cf
-
SSDEEP
768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITYabDbB:qDdFJy3QMOtEvwDpjjWMl7TdN
Behavioral task
behavioral1
Sample
2024-06-06_8cccc9dbd87ee1ef43c2bd73e980c21f_cryptolocker.exe
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
2024-06-06_8cccc9dbd87ee1ef43c2bd73e980c21f_cryptolocker.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
2024-06-06_8cccc9dbd87ee1ef43c2bd73e980c21f_cryptolocker
-
Size
40KB
-
MD5
8cccc9dbd87ee1ef43c2bd73e980c21f
-
SHA1
cefd2fe8c5ebadab9db508de004abf33b35ce54b
-
SHA256
d4edf2c5f41989e17c624e3a9d62f68b9bd9828d539a3549aeca5af3d3a7c671
-
SHA512
63bc5b8efab04596f85bd43380d9ead95de1262bc783133f1444083235cee02e3491166538d18839999928dd78dab7c97f98969de6970926e59a0a4bb77397cf
-
SSDEEP
768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITYabDbB:qDdFJy3QMOtEvwDpjjWMl7TdN
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-