General
-
Target
2024-02-12_d104ff42f4a3e1802c80dd2e6ee96a85_cryptolocker
-
Size
41KB
-
Sample
240212-y5g6dadc52
-
MD5
d104ff42f4a3e1802c80dd2e6ee96a85
-
SHA1
f4def39f80375602d6c2999dc2f5254093aec73b
-
SHA256
546518a648c254cfa95299873e9c6872827b064447fc47f6b50e8c78d7d97bdf
-
SHA512
2f6281e59d74f54e5d6ae6c67bb02422da5b1fae53b34921fe3b26796b1576f00b296920f08fcf8fafa7bf1c4f4d5f1b3c21a8cfd2c5bc224a0301ee2b202f85
-
SSDEEP
768:bgX4zYcgTEu6QOaryfjqDlC6JFbK37YbD4Is:bgGYcA/53GAA6y374s
Static task
static1
Behavioral task
behavioral1
Sample
2024-02-12_d104ff42f4a3e1802c80dd2e6ee96a85_cryptolocker.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
2024-02-12_d104ff42f4a3e1802c80dd2e6ee96a85_cryptolocker.exe
Resource
win10v2004-20231222-en
Malware Config
Targets
-
-
Target
2024-02-12_d104ff42f4a3e1802c80dd2e6ee96a85_cryptolocker
-
Size
41KB
-
MD5
d104ff42f4a3e1802c80dd2e6ee96a85
-
SHA1
f4def39f80375602d6c2999dc2f5254093aec73b
-
SHA256
546518a648c254cfa95299873e9c6872827b064447fc47f6b50e8c78d7d97bdf
-
SHA512
2f6281e59d74f54e5d6ae6c67bb02422da5b1fae53b34921fe3b26796b1576f00b296920f08fcf8fafa7bf1c4f4d5f1b3c21a8cfd2c5bc224a0301ee2b202f85
-
SSDEEP
768:bgX4zYcgTEu6QOaryfjqDlC6JFbK37YbD4Is:bgGYcA/53GAA6y374s
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-