General
-
Target
2024-02-12_fc36e9e88367952970fb608509554bc7_cryptolocker
-
Size
41KB
-
Sample
240212-wj5y7scd87
-
MD5
fc36e9e88367952970fb608509554bc7
-
SHA1
752133455ddd13ae15669f0ab54b6032e10612ff
-
SHA256
2aa0b5712950c4e31c9b991d869ccc427c994879f609e312dbc13804d37bf355
-
SHA512
4fe859476c35feef2eb3f36584ae99e8a3b6bf421cd47e39f8d538230ff11f1009737a0aa7be85bdfe94e207ec03cde1e42371b1c33ae37a500a588bedb1dbc4
-
SSDEEP
768:btB9g/WItCSsAGjX7r3BPOMHocM4vUUOmJ+7f:btB9g/xtCSKfxLIcMzUw7f
Static task
static1
Behavioral task
behavioral1
Sample
2024-02-12_fc36e9e88367952970fb608509554bc7_cryptolocker.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
2024-02-12_fc36e9e88367952970fb608509554bc7_cryptolocker.exe
Resource
win10v2004-20231215-en
Malware Config
Targets
-
-
Target
2024-02-12_fc36e9e88367952970fb608509554bc7_cryptolocker
-
Size
41KB
-
MD5
fc36e9e88367952970fb608509554bc7
-
SHA1
752133455ddd13ae15669f0ab54b6032e10612ff
-
SHA256
2aa0b5712950c4e31c9b991d869ccc427c994879f609e312dbc13804d37bf355
-
SHA512
4fe859476c35feef2eb3f36584ae99e8a3b6bf421cd47e39f8d538230ff11f1009737a0aa7be85bdfe94e207ec03cde1e42371b1c33ae37a500a588bedb1dbc4
-
SSDEEP
768:btB9g/WItCSsAGjX7r3BPOMHocM4vUUOmJ+7f:btB9g/xtCSKfxLIcMzUw7f
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-