General
-
Target
2024-02-12_983070050305f2904e6b4a4da232ab75_cryptolocker
-
Size
32KB
-
Sample
240212-wbe3tacc92
-
MD5
983070050305f2904e6b4a4da232ab75
-
SHA1
e9a32b2dcde5029be46d1c2fcc8548630b7cb84f
-
SHA256
9500dce835dca518f0d5abffce9618c7e549ab38d9d12b7cdfecb3fc43a95236
-
SHA512
1581b8ead8d114a7052d6894624a821c4fb4a4cb6afe652e5fc05bf43ed3b775764c5bffb38421518046452e257910b253e4d594cb28f75a13fa340aada13a7c
-
SSDEEP
384:bmM0V/YPvnr801TRoUGPh4TKt6ATt1DqgPa3s/zzoCt9/B1RwFtl:b7o/2n1TCraU6GD1a4Xt9bRw9
Static task
static1
Behavioral task
behavioral1
Sample
2024-02-12_983070050305f2904e6b4a4da232ab75_cryptolocker.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
2024-02-12_983070050305f2904e6b4a4da232ab75_cryptolocker.exe
Resource
win10v2004-20231222-en
Malware Config
Targets
-
-
Target
2024-02-12_983070050305f2904e6b4a4da232ab75_cryptolocker
-
Size
32KB
-
MD5
983070050305f2904e6b4a4da232ab75
-
SHA1
e9a32b2dcde5029be46d1c2fcc8548630b7cb84f
-
SHA256
9500dce835dca518f0d5abffce9618c7e549ab38d9d12b7cdfecb3fc43a95236
-
SHA512
1581b8ead8d114a7052d6894624a821c4fb4a4cb6afe652e5fc05bf43ed3b775764c5bffb38421518046452e257910b253e4d594cb28f75a13fa340aada13a7c
-
SSDEEP
384:bmM0V/YPvnr801TRoUGPh4TKt6ATt1DqgPa3s/zzoCt9/B1RwFtl:b7o/2n1TCraU6GD1a4Xt9bRw9
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-