General
-
Target
2024-06-12_a2230c69f0730a2d7b3943953751638e_cryptolocker
-
Size
96KB
-
Sample
240612-yga26axfja
-
MD5
a2230c69f0730a2d7b3943953751638e
-
SHA1
c31ede124022374003cc5db48546b0219dcbac92
-
SHA256
c40fd0ae297a05257d5459a0df5b85f63e7fb55e7c9b057dd8e56b88991ab359
-
SHA512
49339060c4ddac36e72cbbeec2c5c129129be5bf6cbf354465e34ce1a5164df7deeb266291f44c1e878b5baaa6c1e07f3cf8ac6f53d44b5001bfc3d56bcafaf2
-
SSDEEP
768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJyqdOS:xj+VGMOtEvwDpjubwQEIiVmkuqcS
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-12_a2230c69f0730a2d7b3943953751638e_cryptolocker.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
2024-06-12_a2230c69f0730a2d7b3943953751638e_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-06-12_a2230c69f0730a2d7b3943953751638e_cryptolocker
-
Size
96KB
-
MD5
a2230c69f0730a2d7b3943953751638e
-
SHA1
c31ede124022374003cc5db48546b0219dcbac92
-
SHA256
c40fd0ae297a05257d5459a0df5b85f63e7fb55e7c9b057dd8e56b88991ab359
-
SHA512
49339060c4ddac36e72cbbeec2c5c129129be5bf6cbf354465e34ce1a5164df7deeb266291f44c1e878b5baaa6c1e07f3cf8ac6f53d44b5001bfc3d56bcafaf2
-
SSDEEP
768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJyqdOS:xj+VGMOtEvwDpjubwQEIiVmkuqcS
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Detects executables built or packed with MPress PE compressor
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-