General
-
Target
2024-06-06_91b71c37a4321de87f1a46c5d1c75369_cryptolocker
-
Size
44KB
-
Sample
240606-1dk43add74
-
MD5
91b71c37a4321de87f1a46c5d1c75369
-
SHA1
25162f4107415e06b169a4c8524af270f504a298
-
SHA256
4f8807d2c7d9754c5f1b91ea8f50199d2c36cc20cabd7bd0e74bead2b2480ece
-
SHA512
de0c06198c96d2e0775281b21c27ccc7a83b39b24a6c2abd0dffb3451f7daa86993dbcb7f7121d1e2961740d6febb447c126b71f9b7a6ce09e48c46977501ecc
-
SSDEEP
768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/aD0:6j+1NMOtEvwDpjrR/
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-06_91b71c37a4321de87f1a46c5d1c75369_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-06-06_91b71c37a4321de87f1a46c5d1c75369_cryptolocker.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-06-06_91b71c37a4321de87f1a46c5d1c75369_cryptolocker
-
Size
44KB
-
MD5
91b71c37a4321de87f1a46c5d1c75369
-
SHA1
25162f4107415e06b169a4c8524af270f504a298
-
SHA256
4f8807d2c7d9754c5f1b91ea8f50199d2c36cc20cabd7bd0e74bead2b2480ece
-
SHA512
de0c06198c96d2e0775281b21c27ccc7a83b39b24a6c2abd0dffb3451f7daa86993dbcb7f7121d1e2961740d6febb447c126b71f9b7a6ce09e48c46977501ecc
-
SSDEEP
768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/aD0:6j+1NMOtEvwDpjrR/
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Detects executables built or packed with MPress PE compressor
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-