General
-
Target
2024-06-07_27b13a8c8eaa222746f06b021c96fbea_cryptolocker
-
Size
52KB
-
Sample
240607-xezr3aca7z
-
MD5
27b13a8c8eaa222746f06b021c96fbea
-
SHA1
699201dde3f27de529ebfb2ae11cd3af927ee4f5
-
SHA256
8e2abdf1c098cbd1dc0234c8facfc3472faa9896383eaefce83b74616d2c560d
-
SHA512
0ea3bac3505e22cbfc4d01488cf144064b1cff9fc1a3ca2b4c061abda5041435df9d86bd8bef2a7d29f8768b1097a2733c03a23b6f674e9b161442a542ba2525
-
SSDEEP
768:bODOw9UiamWUB2preAr+OfjH/0S16avdrQFiLjJvtX3:bODOw9acifAoc+vX3
Behavioral task
behavioral1
Sample
2024-06-07_27b13a8c8eaa222746f06b021c96fbea_cryptolocker.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
2024-06-07_27b13a8c8eaa222746f06b021c96fbea_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-06-07_27b13a8c8eaa222746f06b021c96fbea_cryptolocker
-
Size
52KB
-
MD5
27b13a8c8eaa222746f06b021c96fbea
-
SHA1
699201dde3f27de529ebfb2ae11cd3af927ee4f5
-
SHA256
8e2abdf1c098cbd1dc0234c8facfc3472faa9896383eaefce83b74616d2c560d
-
SHA512
0ea3bac3505e22cbfc4d01488cf144064b1cff9fc1a3ca2b4c061abda5041435df9d86bd8bef2a7d29f8768b1097a2733c03a23b6f674e9b161442a542ba2525
-
SSDEEP
768:bODOw9UiamWUB2preAr+OfjH/0S16avdrQFiLjJvtX3:bODOw9acifAoc+vX3
Score9/10-
Detection of CryptoLocker Variants
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-