General
-
Target
2024-02-12_3560d407bc37ffad08369e7beea803d3_cryptolocker
-
Size
59KB
-
Sample
240212-x3twqacg69
-
MD5
3560d407bc37ffad08369e7beea803d3
-
SHA1
87e593a0035846783be01a86d06fc36461635410
-
SHA256
61e5477437bfcf31b074efeb011dbdb58361a4934987e38c5fdb4f0a37e697ef
-
SHA512
e9353bc194d87792be24a6d6f868eb4060e880148aca5a633d069ca774b460185ce940d029ac53d80cddeb35aa9e27b96058ae53cec01c7d4482685b0ea32ba1
-
SSDEEP
1536:ZzFbxmLPWQMOtEvwDpj38lD/cMAT+lBO+:ZVxkGOtEvwDpjC
Static task
static1
Behavioral task
behavioral1
Sample
2024-02-12_3560d407bc37ffad08369e7beea803d3_cryptolocker.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
2024-02-12_3560d407bc37ffad08369e7beea803d3_cryptolocker.exe
Resource
win10v2004-20231215-en
Malware Config
Targets
-
-
Target
2024-02-12_3560d407bc37ffad08369e7beea803d3_cryptolocker
-
Size
59KB
-
MD5
3560d407bc37ffad08369e7beea803d3
-
SHA1
87e593a0035846783be01a86d06fc36461635410
-
SHA256
61e5477437bfcf31b074efeb011dbdb58361a4934987e38c5fdb4f0a37e697ef
-
SHA512
e9353bc194d87792be24a6d6f868eb4060e880148aca5a633d069ca774b460185ce940d029ac53d80cddeb35aa9e27b96058ae53cec01c7d4482685b0ea32ba1
-
SSDEEP
1536:ZzFbxmLPWQMOtEvwDpj38lD/cMAT+lBO+:ZVxkGOtEvwDpjC
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-