General
-
Target
2024-01-25_8d40ba89b33e329fb0ae3e9bbe3b00c3_cryptolocker
-
Size
35KB
-
Sample
240125-s5cm1aahaj
-
MD5
8d40ba89b33e329fb0ae3e9bbe3b00c3
-
SHA1
61f3cec5cf20adc1d74d76767cd2813c300978ab
-
SHA256
2ebcf4f6960e5e8186c7310d9617a304dd67aa1e7d2fe022e14f81a8bf322889
-
SHA512
621935ca08f7ef95b24e2e005e977e4018a98e3a4b8d8d140789eb5e4f995e5eb3d989ded04e276ce3297681e527a7d5e3338781cb643945cca5e1d167f24944
-
SSDEEP
384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNiJXxXun19:btB9g/WItCSsAGjX7e9N0hunv
Static task
static1
Behavioral task
behavioral1
Sample
2024-01-25_8d40ba89b33e329fb0ae3e9bbe3b00c3_cryptolocker.exe
Resource
win7-20231215-en
Malware Config
Targets
-
-
Target
2024-01-25_8d40ba89b33e329fb0ae3e9bbe3b00c3_cryptolocker
-
Size
35KB
-
MD5
8d40ba89b33e329fb0ae3e9bbe3b00c3
-
SHA1
61f3cec5cf20adc1d74d76767cd2813c300978ab
-
SHA256
2ebcf4f6960e5e8186c7310d9617a304dd67aa1e7d2fe022e14f81a8bf322889
-
SHA512
621935ca08f7ef95b24e2e005e977e4018a98e3a4b8d8d140789eb5e4f995e5eb3d989ded04e276ce3297681e527a7d5e3338781cb643945cca5e1d167f24944
-
SSDEEP
384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNiJXxXun19:btB9g/WItCSsAGjX7e9N0hunv
-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-