General
-
Target
2024-06-13_701f24346ba376f9b86d422b7c81fd08_cryptolocker
-
Size
40KB
-
Sample
240613-nx8y1s1fnp
-
MD5
701f24346ba376f9b86d422b7c81fd08
-
SHA1
5d8a988104a29a3a4574a3144e8bf286dca82ff0
-
SHA256
202f2c1b4ac0c0527cfc2b415b1c45f736aa6412559bb7c4113403a95967f006
-
SHA512
b24ee441586ea13e329e7b73a446150b114eaa1a67342affda59fb86f5de5863facb8dd473a01ad1cf6035d2fbc18355fb49ca76e07257cbdc04bea747cb8787
-
SSDEEP
768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITYabDbf:qDdFJy3QMOtEvwDpjjWMl7Tdz
Behavioral task
behavioral1
Sample
2024-06-13_701f24346ba376f9b86d422b7c81fd08_cryptolocker.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
2024-06-13_701f24346ba376f9b86d422b7c81fd08_cryptolocker.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
2024-06-13_701f24346ba376f9b86d422b7c81fd08_cryptolocker
-
Size
40KB
-
MD5
701f24346ba376f9b86d422b7c81fd08
-
SHA1
5d8a988104a29a3a4574a3144e8bf286dca82ff0
-
SHA256
202f2c1b4ac0c0527cfc2b415b1c45f736aa6412559bb7c4113403a95967f006
-
SHA512
b24ee441586ea13e329e7b73a446150b114eaa1a67342affda59fb86f5de5863facb8dd473a01ad1cf6035d2fbc18355fb49ca76e07257cbdc04bea747cb8787
-
SSDEEP
768:q7PdFecFS5agQtOOtEvwDpjeMLZdzuqpXsiE8Wq/DpkITYabDbf:qDdFJy3QMOtEvwDpjjWMl7Tdz
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-