General
-
Target
2024-01-25_cebd64f5578d05fc82c9773e27c11492_cryptolocker
-
Size
50KB
-
Sample
240125-s9y2ssahhm
-
MD5
cebd64f5578d05fc82c9773e27c11492
-
SHA1
5ba1b8fc321734a1e807d7d8a57e913077fd1f48
-
SHA256
63edb8a556595d3ef12fdd256c70f447fff7f26fed2e8899a6fe20abb905e864
-
SHA512
817a594fe0069b4b9b97eb76c1058eb65c746d4fd9b0ca395c239cc33163bba19a4fcf1ecc9717ad13efebc767d9ac9d07daf7b05f59e5be209febc0079ef8f6
-
SSDEEP
768:X6LsoEEeegiZPvEhHSG+gp/BtOOtEvwDpjBVaD3E09vaToguMyj:X6QFElP6n+gJBMOtEvwDpjBtEJNM+
Static task
static1
Behavioral task
behavioral1
Sample
2024-01-25_cebd64f5578d05fc82c9773e27c11492_cryptolocker.exe
Resource
win7-20231215-en
Malware Config
Targets
-
-
Target
2024-01-25_cebd64f5578d05fc82c9773e27c11492_cryptolocker
-
Size
50KB
-
MD5
cebd64f5578d05fc82c9773e27c11492
-
SHA1
5ba1b8fc321734a1e807d7d8a57e913077fd1f48
-
SHA256
63edb8a556595d3ef12fdd256c70f447fff7f26fed2e8899a6fe20abb905e864
-
SHA512
817a594fe0069b4b9b97eb76c1058eb65c746d4fd9b0ca395c239cc33163bba19a4fcf1ecc9717ad13efebc767d9ac9d07daf7b05f59e5be209febc0079ef8f6
-
SSDEEP
768:X6LsoEEeegiZPvEhHSG+gp/BtOOtEvwDpjBVaD3E09vaToguMyj:X6QFElP6n+gJBMOtEvwDpjBtEJNM+
-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-