General
-
Target
2024-02-12_3ae762aac5bfd06d95a96bfa30dd1fe6_cryptolocker
-
Size
42KB
-
Sample
240212-y7l74sdc87
-
MD5
3ae762aac5bfd06d95a96bfa30dd1fe6
-
SHA1
d1a3384f226b3c20ea62d5005cdd5a135052ae07
-
SHA256
8d5c7b1f26833f1cd645d85847ed55decd9a001cd16e3b0036179c6abab86291
-
SHA512
b4c3f25d7e1cc07ad98dfcc5eb3e9a8f5771573268a686d78df2abdd5456e51d93a2b7b687c559b0ebedb08397ca456c7d419207a3988b04b6bb2af6c75eb10f
-
SSDEEP
768:b7o/2n1TCraU6GD1a4X0WcO+wMVm+slAMpheD:bc/y2lkF0+Be6
Static task
static1
Behavioral task
behavioral1
Sample
2024-02-12_3ae762aac5bfd06d95a96bfa30dd1fe6_cryptolocker.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
2024-02-12_3ae762aac5bfd06d95a96bfa30dd1fe6_cryptolocker.exe
Resource
win10v2004-20231215-en
Malware Config
Targets
-
-
Target
2024-02-12_3ae762aac5bfd06d95a96bfa30dd1fe6_cryptolocker
-
Size
42KB
-
MD5
3ae762aac5bfd06d95a96bfa30dd1fe6
-
SHA1
d1a3384f226b3c20ea62d5005cdd5a135052ae07
-
SHA256
8d5c7b1f26833f1cd645d85847ed55decd9a001cd16e3b0036179c6abab86291
-
SHA512
b4c3f25d7e1cc07ad98dfcc5eb3e9a8f5771573268a686d78df2abdd5456e51d93a2b7b687c559b0ebedb08397ca456c7d419207a3988b04b6bb2af6c75eb10f
-
SSDEEP
768:b7o/2n1TCraU6GD1a4X0WcO+wMVm+slAMpheD:bc/y2lkF0+Be6
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-