General
-
Target
2024-02-12_5bfb6003714005e881bb638765af3750_cryptolocker
-
Size
123KB
-
Sample
240212-y8gc9adc99
-
MD5
5bfb6003714005e881bb638765af3750
-
SHA1
6d2a5d8a9c0595746469a84100e98f3200b400a5
-
SHA256
567b94d808f70037a9800050370e774381b2243d09df957de9c5337f9fabd150
-
SHA512
336c4606395756b8fa11d9af284750c045b37dd3d449851ba334d14cf78cc3e8968b37d6d6ad4227731e33f1fd92ba14af29cf3a0215574b17fd1f0d5bc937ab
-
SSDEEP
1536:gUj+AIMOtEvwDpjNbwQEIPlemUhYwkkxE4qu:vCA9OtEvwDpjg
Static task
static1
Behavioral task
behavioral1
Sample
2024-02-12_5bfb6003714005e881bb638765af3750_cryptolocker.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
2024-02-12_5bfb6003714005e881bb638765af3750_cryptolocker.exe
Resource
win10v2004-20231222-en
Malware Config
Targets
-
-
Target
2024-02-12_5bfb6003714005e881bb638765af3750_cryptolocker
-
Size
123KB
-
MD5
5bfb6003714005e881bb638765af3750
-
SHA1
6d2a5d8a9c0595746469a84100e98f3200b400a5
-
SHA256
567b94d808f70037a9800050370e774381b2243d09df957de9c5337f9fabd150
-
SHA512
336c4606395756b8fa11d9af284750c045b37dd3d449851ba334d14cf78cc3e8968b37d6d6ad4227731e33f1fd92ba14af29cf3a0215574b17fd1f0d5bc937ab
-
SSDEEP
1536:gUj+AIMOtEvwDpjNbwQEIPlemUhYwkkxE4qu:vCA9OtEvwDpjg
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-