General
-
Target
2024-02-12_ce1daf63a21831fc41ad97c65f361f9a_cryptolocker
-
Size
60KB
-
Sample
240212-y4zzssdc46
-
MD5
ce1daf63a21831fc41ad97c65f361f9a
-
SHA1
bce087c20423ed4836cdde01b0fb6477f5c86546
-
SHA256
c062075e82ff466fc5bcd8b117a94526c7ac1f0cada4d1067973ce86007cdfa7
-
SHA512
8a698689ae9ce49e4158f7b26d19e8663a78ef0859ba5ed43a5667ade5ee6759077f748fa63bc9c3b3e1ed9c247931376b1d7d108d53eaf9d51f184a30e511f3
-
SSDEEP
1536:btB9g/xtCSKfxLIc//Xr+/AO/kIZ3ft2nVuTKB6nggOlHdUHNp:btng54SMLr+/AO/kIhfoKMHde
Static task
static1
Behavioral task
behavioral1
Sample
2024-02-12_ce1daf63a21831fc41ad97c65f361f9a_cryptolocker.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
2024-02-12_ce1daf63a21831fc41ad97c65f361f9a_cryptolocker.exe
Resource
win10v2004-20231215-en
Malware Config
Targets
-
-
Target
2024-02-12_ce1daf63a21831fc41ad97c65f361f9a_cryptolocker
-
Size
60KB
-
MD5
ce1daf63a21831fc41ad97c65f361f9a
-
SHA1
bce087c20423ed4836cdde01b0fb6477f5c86546
-
SHA256
c062075e82ff466fc5bcd8b117a94526c7ac1f0cada4d1067973ce86007cdfa7
-
SHA512
8a698689ae9ce49e4158f7b26d19e8663a78ef0859ba5ed43a5667ade5ee6759077f748fa63bc9c3b3e1ed9c247931376b1d7d108d53eaf9d51f184a30e511f3
-
SSDEEP
1536:btB9g/xtCSKfxLIc//Xr+/AO/kIZ3ft2nVuTKB6nggOlHdUHNp:btng54SMLr+/AO/kIhfoKMHde
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-