General
-
Target
2024-01-25_e808848df442092b95588e87ef9efa4a_cryptolocker
-
Size
55KB
-
Sample
240125-tby5ksbadj
-
MD5
e808848df442092b95588e87ef9efa4a
-
SHA1
e6920d3dcd9923200ebb68a147bfa28cad4685a1
-
SHA256
b032924481cd9bb1ca878c3ba08464f6149dc3223c6ae8aa93024261334faf12
-
SHA512
f25bdb57ab83b3fbb04828f72b21ef8e40b1849fe93436ae50cf696e78018fe361eea21937c976bad3edb142a104a2a003fb5687d44dee4ebe0c66a13317d7a8
-
SSDEEP
768:79inqyNR/QtOOtEvwDpjBK/iVTab3GRuv3VylsPxAN:79mqyNhQMOtEvwDpjBPY7xv3gy5+
Static task
static1
Behavioral task
behavioral1
Sample
2024-01-25_e808848df442092b95588e87ef9efa4a_cryptolocker.exe
Resource
win7-20231215-en
Malware Config
Targets
-
-
Target
2024-01-25_e808848df442092b95588e87ef9efa4a_cryptolocker
-
Size
55KB
-
MD5
e808848df442092b95588e87ef9efa4a
-
SHA1
e6920d3dcd9923200ebb68a147bfa28cad4685a1
-
SHA256
b032924481cd9bb1ca878c3ba08464f6149dc3223c6ae8aa93024261334faf12
-
SHA512
f25bdb57ab83b3fbb04828f72b21ef8e40b1849fe93436ae50cf696e78018fe361eea21937c976bad3edb142a104a2a003fb5687d44dee4ebe0c66a13317d7a8
-
SSDEEP
768:79inqyNR/QtOOtEvwDpjBK/iVTab3GRuv3VylsPxAN:79mqyNhQMOtEvwDpjBPY7xv3gy5+
-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-