General
-
Target
2024-06-07_2d55460cec8729c3fd163f446ce04df1_cryptolocker
-
Size
54KB
-
Sample
240607-sth1msbd44
-
MD5
2d55460cec8729c3fd163f446ce04df1
-
SHA1
33373a3dda766dee21cdf844971ce91deb733988
-
SHA256
3042f4a5b6eefde73becc51a8d53d4fe1febb73ee7d645527e8c7b3c86bbde69
-
SHA512
83e30735da7fdb2b181c13a685510cedebee6bde51d6f58f6bdce758b4e66bdc4345247902df365eb889b7628fb010575830b825bfb00d59f197bbee875e61f0
-
SSDEEP
768:z6LsoEEeegiZPvEhHSG+gzum/kLyMro2GtOOtEvwDpj/YY1J+OTOkgj:z6QFElP6n+gKmddpMOtEvwDpj31ikgj
Behavioral task
behavioral1
Sample
2024-06-07_2d55460cec8729c3fd163f446ce04df1_cryptolocker.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
2024-06-07_2d55460cec8729c3fd163f446ce04df1_cryptolocker.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-06-07_2d55460cec8729c3fd163f446ce04df1_cryptolocker
-
Size
54KB
-
MD5
2d55460cec8729c3fd163f446ce04df1
-
SHA1
33373a3dda766dee21cdf844971ce91deb733988
-
SHA256
3042f4a5b6eefde73becc51a8d53d4fe1febb73ee7d645527e8c7b3c86bbde69
-
SHA512
83e30735da7fdb2b181c13a685510cedebee6bde51d6f58f6bdce758b4e66bdc4345247902df365eb889b7628fb010575830b825bfb00d59f197bbee875e61f0
-
SSDEEP
768:z6LsoEEeegiZPvEhHSG+gzum/kLyMro2GtOOtEvwDpj/YY1J+OTOkgj:z6QFElP6n+gKmddpMOtEvwDpj31ikgj
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-