General
-
Target
2024-02-12_bd491cc2ee163ea207be92f0f74881c7_cryptolocker
-
Size
37KB
-
Sample
240212-wdcqgaag2t
-
MD5
bd491cc2ee163ea207be92f0f74881c7
-
SHA1
fa80a26946678c3df22db3edda5875a84e4a72ba
-
SHA256
d1a0f26c8238377b3883a74aadc314cd43a3d7b9711bbb7707ddb3868c9f7d9f
-
SHA512
354684de46817132c1d3b532db0bbcbac185f37699a90920b87238e6dbb4c473840dc3cd0cdc83bd7aa88958b602e5aa837f730f717fa586b53505752a99b1d8
-
SSDEEP
768:wHGGaSawqnwjRQ6ESlmFOsPoOdQtOOtEvwDpjm6WaJIOc+UPPEkCulT/:YGzl5wjRQBBOsP1QMOtEvwDpjgarrkD/
Static task
static1
Behavioral task
behavioral1
Sample
2024-02-12_bd491cc2ee163ea207be92f0f74881c7_cryptolocker.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
2024-02-12_bd491cc2ee163ea207be92f0f74881c7_cryptolocker.exe
Resource
win10v2004-20231215-en
Malware Config
Targets
-
-
Target
2024-02-12_bd491cc2ee163ea207be92f0f74881c7_cryptolocker
-
Size
37KB
-
MD5
bd491cc2ee163ea207be92f0f74881c7
-
SHA1
fa80a26946678c3df22db3edda5875a84e4a72ba
-
SHA256
d1a0f26c8238377b3883a74aadc314cd43a3d7b9711bbb7707ddb3868c9f7d9f
-
SHA512
354684de46817132c1d3b532db0bbcbac185f37699a90920b87238e6dbb4c473840dc3cd0cdc83bd7aa88958b602e5aa837f730f717fa586b53505752a99b1d8
-
SSDEEP
768:wHGGaSawqnwjRQ6ESlmFOsPoOdQtOOtEvwDpjm6WaJIOc+UPPEkCulT/:YGzl5wjRQBBOsP1QMOtEvwDpjgarrkD/
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-