General
-
Target
2024-06-11_f8fe7e09b1ba9a813890f56a71ed7437_cryptolocker
-
Size
43KB
-
Sample
240611-c6qy1ssbjp
-
MD5
f8fe7e09b1ba9a813890f56a71ed7437
-
SHA1
60281f2759900a579411bc8478dabd874a99ae9b
-
SHA256
b9d78020a4da6eddddb943b6898377af93957b779c48ae145378d096b1a10656
-
SHA512
d4cbe3dc37f237ce1f16b49f1770a7337ac146d7f7dd725274a0cf7dbea7aff53f6b2e315cbc81e6f7f67fdcdc13ead649efac7c8ffa8580eefe9a4beba85976
-
SSDEEP
768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/aDDRk:6j+1NMOtEvwDpjrRsk
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-11_f8fe7e09b1ba9a813890f56a71ed7437_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-06-11_f8fe7e09b1ba9a813890f56a71ed7437_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-06-11_f8fe7e09b1ba9a813890f56a71ed7437_cryptolocker
-
Size
43KB
-
MD5
f8fe7e09b1ba9a813890f56a71ed7437
-
SHA1
60281f2759900a579411bc8478dabd874a99ae9b
-
SHA256
b9d78020a4da6eddddb943b6898377af93957b779c48ae145378d096b1a10656
-
SHA512
d4cbe3dc37f237ce1f16b49f1770a7337ac146d7f7dd725274a0cf7dbea7aff53f6b2e315cbc81e6f7f67fdcdc13ead649efac7c8ffa8580eefe9a4beba85976
-
SSDEEP
768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/aDDRk:6j+1NMOtEvwDpjrRsk
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Detects executables built or packed with MPress PE compressor
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-