General
-
Target
2024-02-12_b3e06f54bdf622de6999cf91c6bd6e11_cryptolocker
-
Size
385KB
-
Sample
240212-y1ymkadb98
-
MD5
b3e06f54bdf622de6999cf91c6bd6e11
-
SHA1
727c877de245988c78a3226e262b8fb165475d06
-
SHA256
69760d0761dd05987d56f54740e1d3748c3f4865b0668e665096b178f42c6b4b
-
SHA512
d5981c50f155ade97d7f92a99af8f010c755eaad03f253801e519a5e62ceb0ac99c48281731c1247a5839edc342eb6eaeb77bf7505dfd7a15c10570f0cea4e01
-
SSDEEP
6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXs:nnOflT/ZFIjBz3xjTxynGUOUhXs
Static task
static1
Behavioral task
behavioral1
Sample
2024-02-12_b3e06f54bdf622de6999cf91c6bd6e11_cryptolocker.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
2024-02-12_b3e06f54bdf622de6999cf91c6bd6e11_cryptolocker.exe
Resource
win10v2004-20231222-en
Malware Config
Targets
-
-
Target
2024-02-12_b3e06f54bdf622de6999cf91c6bd6e11_cryptolocker
-
Size
385KB
-
MD5
b3e06f54bdf622de6999cf91c6bd6e11
-
SHA1
727c877de245988c78a3226e262b8fb165475d06
-
SHA256
69760d0761dd05987d56f54740e1d3748c3f4865b0668e665096b178f42c6b4b
-
SHA512
d5981c50f155ade97d7f92a99af8f010c755eaad03f253801e519a5e62ceb0ac99c48281731c1247a5839edc342eb6eaeb77bf7505dfd7a15c10570f0cea4e01
-
SSDEEP
6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXs:nnOflT/ZFIjBz3xjTxynGUOUhXs
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-