General
-
Target
2024-06-12_a47064ba790470de5f81077318f5ee6b_cryptolocker
-
Size
40KB
-
Sample
240612-ygrpxaxfkf
-
MD5
a47064ba790470de5f81077318f5ee6b
-
SHA1
bd41b88b811f26488be05c60ba62e17b0ac0c749
-
SHA256
b859417c8ca9289dcc2fe19d9f1d0b546359e553898c23c84de1f316dae402b0
-
SHA512
a49e7b342d8ec32b518652295cacf76635a3e7ecf2f2a5e28f9c2750c33b6542eb98045c19d93be9a77726260b113389d4620dbd14a292c6880125e6ddc7ce62
-
SSDEEP
768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITYan/H:qDdFJy3QMOtEvwDpjjWMl7Tdn/H
Behavioral task
behavioral1
Sample
2024-06-12_a47064ba790470de5f81077318f5ee6b_cryptolocker.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
2024-06-12_a47064ba790470de5f81077318f5ee6b_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-06-12_a47064ba790470de5f81077318f5ee6b_cryptolocker
-
Size
40KB
-
MD5
a47064ba790470de5f81077318f5ee6b
-
SHA1
bd41b88b811f26488be05c60ba62e17b0ac0c749
-
SHA256
b859417c8ca9289dcc2fe19d9f1d0b546359e553898c23c84de1f316dae402b0
-
SHA512
a49e7b342d8ec32b518652295cacf76635a3e7ecf2f2a5e28f9c2750c33b6542eb98045c19d93be9a77726260b113389d4620dbd14a292c6880125e6ddc7ce62
-
SSDEEP
768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITYan/H:qDdFJy3QMOtEvwDpjjWMl7Tdn/H
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-