General
-
Target
2022-11-23_f84668cc7224f6771610c2fbc60cc65a_cryptolocker
-
Size
33KB
-
Sample
221123-xaprased63
-
MD5
f84668cc7224f6771610c2fbc60cc65a
-
SHA1
90a4767e5ab80ec3243c88e03cf9333a832e2d3d
-
SHA256
92a90247e674f09165d4b86607e06759091bc7bd1ff9811eb881d36e66c372ea
-
SHA512
624c8bb52818390098c10091ba4c7bcb450fdd40f62c92d590cb4157df8129e7dc5687daa22620bee9cc27c1f833618b793023981f97a7c03df6ad6abf23e94b
-
SSDEEP
384:v0VkMq01bJ3wtEwPS8HLEh+Jagz+3be+26Rsn1rCcOQtOOtEvwDpjqIGRGyo9sNL:vQz7yVEhs9+js1SQtOOtEvwDpjfcXx
Static task
static1
Behavioral task
behavioral1
Sample
2022-11-23_f84668cc7224f6771610c2fbc60cc65a_cryptolocker.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
2022-11-23_f84668cc7224f6771610c2fbc60cc65a_cryptolocker.exe
Resource
win10v2004-20221111-en
Malware Config
Targets
-
-
Target
2022-11-23_f84668cc7224f6771610c2fbc60cc65a_cryptolocker
-
Size
33KB
-
MD5
f84668cc7224f6771610c2fbc60cc65a
-
SHA1
90a4767e5ab80ec3243c88e03cf9333a832e2d3d
-
SHA256
92a90247e674f09165d4b86607e06759091bc7bd1ff9811eb881d36e66c372ea
-
SHA512
624c8bb52818390098c10091ba4c7bcb450fdd40f62c92d590cb4157df8129e7dc5687daa22620bee9cc27c1f833618b793023981f97a7c03df6ad6abf23e94b
-
SSDEEP
384:v0VkMq01bJ3wtEwPS8HLEh+Jagz+3be+26Rsn1rCcOQtOOtEvwDpjqIGRGyo9sNL:vQz7yVEhs9+js1SQtOOtEvwDpjfcXx
Score8/10-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-