General
-
Target
2024-01-25_62d68d09fb35f9470bcef39eabf2d54c_cryptolocker
-
Size
37KB
-
Sample
240125-s1kg2sagcn
-
MD5
62d68d09fb35f9470bcef39eabf2d54c
-
SHA1
37251773e948e396c945fa745a7d6f8b129f5731
-
SHA256
b96ac8ee879f95718d8b527e085a5be825768cda2471a18150c1d6e310a2d00e
-
SHA512
f4cfac5c7c8677e11c4d060ffb88547c6474188c4acb4d543ce97ff0566a01980896d930374c563459549aa8fe585a83930cb466bc888b94f4ec5de486141099
-
SSDEEP
768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaac4HKcf24:X6QFElP6n+gJQMOtEvwDpjBsYK624
Static task
static1
Behavioral task
behavioral1
Sample
2024-01-25_62d68d09fb35f9470bcef39eabf2d54c_cryptolocker.exe
Resource
win7-20231129-en
Malware Config
Targets
-
-
Target
2024-01-25_62d68d09fb35f9470bcef39eabf2d54c_cryptolocker
-
Size
37KB
-
MD5
62d68d09fb35f9470bcef39eabf2d54c
-
SHA1
37251773e948e396c945fa745a7d6f8b129f5731
-
SHA256
b96ac8ee879f95718d8b527e085a5be825768cda2471a18150c1d6e310a2d00e
-
SHA512
f4cfac5c7c8677e11c4d060ffb88547c6474188c4acb4d543ce97ff0566a01980896d930374c563459549aa8fe585a83930cb466bc888b94f4ec5de486141099
-
SSDEEP
768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaac4HKcf24:X6QFElP6n+gJQMOtEvwDpjBsYK624
-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-