General
-
Target
2024-06-11_3bcd499137a5751e33be732614829a6c_cryptolocker
-
Size
44KB
-
Sample
240611-dcb4fa1fpb
-
MD5
3bcd499137a5751e33be732614829a6c
-
SHA1
7e62b87f54a80b20945a1e89de0c355644c61d9e
-
SHA256
a53fe8dbf1e2993eb6f4a435d2c37c4fdbda4838741d49f0a296f911065b1876
-
SHA512
c62954bd9f894e4ca039b2b9eb0ac1760c663ed92386891f2719983a8b3e71649cd52b5f2af593121e3a1b4dcfabd7711a39eaa547852b0e13e7ff7608f0b8ea
-
SSDEEP
768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/aDU:6j+1NMOtEvwDpjrR/
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-11_3bcd499137a5751e33be732614829a6c_cryptolocker.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
2024-06-11_3bcd499137a5751e33be732614829a6c_cryptolocker.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
2024-06-11_3bcd499137a5751e33be732614829a6c_cryptolocker
-
Size
44KB
-
MD5
3bcd499137a5751e33be732614829a6c
-
SHA1
7e62b87f54a80b20945a1e89de0c355644c61d9e
-
SHA256
a53fe8dbf1e2993eb6f4a435d2c37c4fdbda4838741d49f0a296f911065b1876
-
SHA512
c62954bd9f894e4ca039b2b9eb0ac1760c663ed92386891f2719983a8b3e71649cd52b5f2af593121e3a1b4dcfabd7711a39eaa547852b0e13e7ff7608f0b8ea
-
SSDEEP
768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/aDU:6j+1NMOtEvwDpjrR/
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Detects executables built or packed with MPress PE compressor
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-