General
-
Target
2024-02-12_f24e2be2c5680bcbb7684e94500fef89_cryptolocker
-
Size
37KB
-
Sample
240212-wh6t4sag61
-
MD5
f24e2be2c5680bcbb7684e94500fef89
-
SHA1
a14b765d29ef4b6908726058f6a9995c72a8f6f6
-
SHA256
6aede6a6fba8ad489ad3ab8032dc497b2ba490064bf6c9aa4508f9499981214b
-
SHA512
0fdf114820b69b49d8d63232e324b192707d563988810e4fc91ec8f2f896926fb30d0f400da333bdc2767a488412b0d3c5236968557bf977ea924240866c8a9a
-
SSDEEP
768:bxNQIE0eBhkL2Fo1CCwgfjOg1tsJ6zeen7JEgx3s:bxNrC7kYo1Fxf3s06gm
Static task
static1
Behavioral task
behavioral1
Sample
2024-02-12_f24e2be2c5680bcbb7684e94500fef89_cryptolocker.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
2024-02-12_f24e2be2c5680bcbb7684e94500fef89_cryptolocker.exe
Resource
win10v2004-20231222-en
Malware Config
Targets
-
-
Target
2024-02-12_f24e2be2c5680bcbb7684e94500fef89_cryptolocker
-
Size
37KB
-
MD5
f24e2be2c5680bcbb7684e94500fef89
-
SHA1
a14b765d29ef4b6908726058f6a9995c72a8f6f6
-
SHA256
6aede6a6fba8ad489ad3ab8032dc497b2ba490064bf6c9aa4508f9499981214b
-
SHA512
0fdf114820b69b49d8d63232e324b192707d563988810e4fc91ec8f2f896926fb30d0f400da333bdc2767a488412b0d3c5236968557bf977ea924240866c8a9a
-
SSDEEP
768:bxNQIE0eBhkL2Fo1CCwgfjOg1tsJ6zeen7JEgx3s:bxNrC7kYo1Fxf3s06gm
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-