General
-
Target
2024-06-13_8248c3cb0de2cfe43a0757504be06313_cryptolocker
-
Size
70KB
-
Sample
240613-b7kb7azdpc
-
MD5
8248c3cb0de2cfe43a0757504be06313
-
SHA1
bca40a8af65b5e928bda567e21b82e5e93fb9f2f
-
SHA256
f50d7a44176ab1323ca33be3a9df308a530c167f09554ff56528614c85f3e0db
-
SHA512
d742cf361ee6642d16cd40e573891a511ef1c47f81a3b5a668a9882d1796c7cc4f2cc4cc65dd121f0aecaa9bfbf6ee6c8493d94a0db65b2358161d70abce02da
-
SSDEEP
768:XS5nQJ24LR1bytOOtEvwDpjNbZ7uyA36S7MpxRXrZSUNsYD/dp5:i5nkFGMOtEvwDpjNbwQEI8UZD9
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-13_8248c3cb0de2cfe43a0757504be06313_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-06-13_8248c3cb0de2cfe43a0757504be06313_cryptolocker.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
2024-06-13_8248c3cb0de2cfe43a0757504be06313_cryptolocker
-
Size
70KB
-
MD5
8248c3cb0de2cfe43a0757504be06313
-
SHA1
bca40a8af65b5e928bda567e21b82e5e93fb9f2f
-
SHA256
f50d7a44176ab1323ca33be3a9df308a530c167f09554ff56528614c85f3e0db
-
SHA512
d742cf361ee6642d16cd40e573891a511ef1c47f81a3b5a668a9882d1796c7cc4f2cc4cc65dd121f0aecaa9bfbf6ee6c8493d94a0db65b2358161d70abce02da
-
SSDEEP
768:XS5nQJ24LR1bytOOtEvwDpjNbZ7uyA36S7MpxRXrZSUNsYD/dp5:i5nkFGMOtEvwDpjNbwQEI8UZD9
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Detects executables built or packed with MPress PE compressor
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-