General
-
Target
2024-06-10_6feb3aa6ae0b59d82ef8b243abb27ab8_cryptolocker
-
Size
39KB
-
Sample
240610-fdjwsach82
-
MD5
6feb3aa6ae0b59d82ef8b243abb27ab8
-
SHA1
18a673a78c8ffbe112594edd049ca298ed5dd008
-
SHA256
e66f8276d0074e1a2ac207ae40018a337177880c8d002f35f534c1d102d6adfd
-
SHA512
bee54fe5cc20125ef7d599af3a7c07158b1cb44acd8c899b86ca4cd1c42ccb2c260744cd7cd7b01b2e575c11e5c6bf0de0e350ae27868a65276146f54f2a1db2
-
SSDEEP
768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITYXtC:qDdFJy3QMOtEvwDpjjWMl7TYC
Behavioral task
behavioral1
Sample
2024-06-10_6feb3aa6ae0b59d82ef8b243abb27ab8_cryptolocker.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
2024-06-10_6feb3aa6ae0b59d82ef8b243abb27ab8_cryptolocker.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
2024-06-10_6feb3aa6ae0b59d82ef8b243abb27ab8_cryptolocker
-
Size
39KB
-
MD5
6feb3aa6ae0b59d82ef8b243abb27ab8
-
SHA1
18a673a78c8ffbe112594edd049ca298ed5dd008
-
SHA256
e66f8276d0074e1a2ac207ae40018a337177880c8d002f35f534c1d102d6adfd
-
SHA512
bee54fe5cc20125ef7d599af3a7c07158b1cb44acd8c899b86ca4cd1c42ccb2c260744cd7cd7b01b2e575c11e5c6bf0de0e350ae27868a65276146f54f2a1db2
-
SSDEEP
768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITYXtC:qDdFJy3QMOtEvwDpjjWMl7TYC
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-