General
-
Target
2024-02-12_cd7a4d8eba70116ad4d659bd1827f3c9_cryptolocker
-
Size
384KB
-
Sample
240212-y4rcnabe7w
-
MD5
cd7a4d8eba70116ad4d659bd1827f3c9
-
SHA1
3ef86bb1120dbddaec18f56b7a865fed85aba7ae
-
SHA256
8e6fcdd8746fb5ab896ace8de5a7580648da93c482c857c4777480f04bd4d921
-
SHA512
a1b34a53799b492dd914cb51ad2f722c66ed00ab46f75285ee9d330b5b168b4a5465bb7d758b8d58957a5c8b1f060ec1b1c4037fbbca99f9f6d99ac667837628
-
SSDEEP
6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXE:nnOflT/ZFIjBz3xjTxynGUOUhXE
Static task
static1
Behavioral task
behavioral1
Sample
2024-02-12_cd7a4d8eba70116ad4d659bd1827f3c9_cryptolocker.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
2024-02-12_cd7a4d8eba70116ad4d659bd1827f3c9_cryptolocker.exe
Resource
win10v2004-20231222-en
Malware Config
Targets
-
-
Target
2024-02-12_cd7a4d8eba70116ad4d659bd1827f3c9_cryptolocker
-
Size
384KB
-
MD5
cd7a4d8eba70116ad4d659bd1827f3c9
-
SHA1
3ef86bb1120dbddaec18f56b7a865fed85aba7ae
-
SHA256
8e6fcdd8746fb5ab896ace8de5a7580648da93c482c857c4777480f04bd4d921
-
SHA512
a1b34a53799b492dd914cb51ad2f722c66ed00ab46f75285ee9d330b5b168b4a5465bb7d758b8d58957a5c8b1f060ec1b1c4037fbbca99f9f6d99ac667837628
-
SSDEEP
6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXE:nnOflT/ZFIjBz3xjTxynGUOUhXE
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-