General
-
Target
2024-02-12_e5eab4fe94d650da2502d191c6650855_cryptolocker
-
Size
73KB
-
Sample
240212-x513tabb5s
-
MD5
e5eab4fe94d650da2502d191c6650855
-
SHA1
4d490679a2d04c27c1f35e24124e73bb355890ed
-
SHA256
97c28c024c85a0586402151aa3b1e48f5c1337396fa236962f6734794777bea8
-
SHA512
8973ee70b56cc4ee47be50dd38ab18ff54f49cc89ed6ce16fa1b3f54b18607a4e3c011191f4260d8b7b7592e733264ecee75813e214b95a7238795caab7060cb
-
SSDEEP
1536:X6QFElP6n+gJQMOtEvwDpjBZYTjipvF2bx1/:X6a+SOtEvwDpjBZYvQd2/
Static task
static1
Behavioral task
behavioral1
Sample
2024-02-12_e5eab4fe94d650da2502d191c6650855_cryptolocker.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
2024-02-12_e5eab4fe94d650da2502d191c6650855_cryptolocker.exe
Resource
win10v2004-20231215-en
Malware Config
Targets
-
-
Target
2024-02-12_e5eab4fe94d650da2502d191c6650855_cryptolocker
-
Size
73KB
-
MD5
e5eab4fe94d650da2502d191c6650855
-
SHA1
4d490679a2d04c27c1f35e24124e73bb355890ed
-
SHA256
97c28c024c85a0586402151aa3b1e48f5c1337396fa236962f6734794777bea8
-
SHA512
8973ee70b56cc4ee47be50dd38ab18ff54f49cc89ed6ce16fa1b3f54b18607a4e3c011191f4260d8b7b7592e733264ecee75813e214b95a7238795caab7060cb
-
SSDEEP
1536:X6QFElP6n+gJQMOtEvwDpjBZYTjipvF2bx1/:X6a+SOtEvwDpjBZYvQd2/
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-