General
-
Target
2024-06-07_a71f24fe983c55aad4e43317135acf55_cryptolocker
-
Size
54KB
-
Sample
240607-szgd1aae4s
-
MD5
a71f24fe983c55aad4e43317135acf55
-
SHA1
767d268959ef3c30ea83567afd0578523a537913
-
SHA256
8eea6e8ae57a8cf019bbe23b36713df5dca2e2e1af28a8865dfd2bdf79ca0b6c
-
SHA512
f756f11f050261a229d0ef80bca966f3df32a2004f90fca6081138ec1db5ce00f17120e62a93876db31a0261e7cb1f00c12e08f9845270e985c3f69e6ea45aac
-
SSDEEP
768:z6LsoEEeegiZPvEhHSG+gzum/kLyMro2GtOOtEvwDpj/YY1J+OTOkg8:z6QFElP6n+gKmddpMOtEvwDpj31ikg8
Behavioral task
behavioral1
Sample
2024-06-07_a71f24fe983c55aad4e43317135acf55_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-06-07_a71f24fe983c55aad4e43317135acf55_cryptolocker.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
2024-06-07_a71f24fe983c55aad4e43317135acf55_cryptolocker
-
Size
54KB
-
MD5
a71f24fe983c55aad4e43317135acf55
-
SHA1
767d268959ef3c30ea83567afd0578523a537913
-
SHA256
8eea6e8ae57a8cf019bbe23b36713df5dca2e2e1af28a8865dfd2bdf79ca0b6c
-
SHA512
f756f11f050261a229d0ef80bca966f3df32a2004f90fca6081138ec1db5ce00f17120e62a93876db31a0261e7cb1f00c12e08f9845270e985c3f69e6ea45aac
-
SSDEEP
768:z6LsoEEeegiZPvEhHSG+gzum/kLyMro2GtOOtEvwDpj/YY1J+OTOkg8:z6QFElP6n+gKmddpMOtEvwDpj31ikg8
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-