General
-
Target
2024-02-12_a7f5800843e34abbdf5ef5f15a60bbf6_cryptolocker
-
Size
32KB
-
Sample
240212-wcgysscc98
-
MD5
a7f5800843e34abbdf5ef5f15a60bbf6
-
SHA1
ad6e6a713d9634be8b29111873941a2955d5549a
-
SHA256
f1dcdac810bcfb98cd2e896989843fef7d969c85d8c229b2ce791ac7b0cf70a9
-
SHA512
c601dd14e3912c70c27637bd0cdeb1926b09646529e0e122ab447aa6e08940d96ab919ece97017974594c3fdee1fb66301ba6f9b4d0f07bf770435f527b64dcd
-
SSDEEP
384:bmM0V/YPvnr801TRoUGPh4TKt6ATt1DqgPa3s/zzoCt9/B1RwFtsJ1:b7o/2n1TCraU6GD1a4Xt9bRwi1
Static task
static1
Behavioral task
behavioral1
Sample
2024-02-12_a7f5800843e34abbdf5ef5f15a60bbf6_cryptolocker.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
2024-02-12_a7f5800843e34abbdf5ef5f15a60bbf6_cryptolocker.exe
Resource
win10v2004-20231215-en
Malware Config
Targets
-
-
Target
2024-02-12_a7f5800843e34abbdf5ef5f15a60bbf6_cryptolocker
-
Size
32KB
-
MD5
a7f5800843e34abbdf5ef5f15a60bbf6
-
SHA1
ad6e6a713d9634be8b29111873941a2955d5549a
-
SHA256
f1dcdac810bcfb98cd2e896989843fef7d969c85d8c229b2ce791ac7b0cf70a9
-
SHA512
c601dd14e3912c70c27637bd0cdeb1926b09646529e0e122ab447aa6e08940d96ab919ece97017974594c3fdee1fb66301ba6f9b4d0f07bf770435f527b64dcd
-
SSDEEP
384:bmM0V/YPvnr801TRoUGPh4TKt6ATt1DqgPa3s/zzoCt9/B1RwFtsJ1:b7o/2n1TCraU6GD1a4Xt9bRwi1
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-