General
-
Target
2024-06-10_61596122380acc5ca7072bf331acd1fc_cryptolocker
-
Size
90KB
-
Sample
240610-1dt2zasajm
-
MD5
61596122380acc5ca7072bf331acd1fc
-
SHA1
044c8113b2e35732baa76f9ad8b3b7cc46260910
-
SHA256
a93b83e697c16bec3c3b95f2b664b1d83f636eaac1852b35add808ee56425a34
-
SHA512
93ad70b966b002b8ba0d78ac57dbb3acc5a7c738474cd413401cec6c8f6af64d39e527704918d3bead1c920a2e7c56be988ca359f513c25b24aeeb06400b58bf
-
SSDEEP
1536:zj+soPSMOtEvwDpj4ktBl01hJl8QAPM8Ho6cRMy8tyblT:zCsanOtEvwDpjc
Behavioral task
behavioral1
Sample
2024-06-10_61596122380acc5ca7072bf331acd1fc_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-06-10_61596122380acc5ca7072bf331acd1fc_cryptolocker.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
2024-06-10_61596122380acc5ca7072bf331acd1fc_cryptolocker
-
Size
90KB
-
MD5
61596122380acc5ca7072bf331acd1fc
-
SHA1
044c8113b2e35732baa76f9ad8b3b7cc46260910
-
SHA256
a93b83e697c16bec3c3b95f2b664b1d83f636eaac1852b35add808ee56425a34
-
SHA512
93ad70b966b002b8ba0d78ac57dbb3acc5a7c738474cd413401cec6c8f6af64d39e527704918d3bead1c920a2e7c56be988ca359f513c25b24aeeb06400b58bf
-
SSDEEP
1536:zj+soPSMOtEvwDpj4ktBl01hJl8QAPM8Ho6cRMy8tyblT:zCsanOtEvwDpjc
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-