General
-
Target
2024-02-12_0b35d54aa4eabe8c392c31ff6ab95a52_cryptolocker
-
Size
54KB
-
Sample
240212-yfyrtsbc4x
-
MD5
0b35d54aa4eabe8c392c31ff6ab95a52
-
SHA1
f5994e935eac3667bceea51323703a18d00bcacc
-
SHA256
0bdb735ca7db2cea0e6c3c91f6b84497e1ff90691b857226e2bf13600efcf1fa
-
SHA512
9f203b084c647fcac02ea96f94cf3b435fdf125a86051167a7b4a888d3c1bcaacd439f3b88396c1dd7e055904c9cf3eb90e3d6f61f8a098662363544b6269708
-
SSDEEP
768:79inqyNR/QtOOtEvwDpjBK/iVTab3GRuv3VylSV/CdMFa:79mqyNhQMOtEvwDpjBPY7xv3g8ZFa
Static task
static1
Behavioral task
behavioral1
Sample
2024-02-12_0b35d54aa4eabe8c392c31ff6ab95a52_cryptolocker.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
2024-02-12_0b35d54aa4eabe8c392c31ff6ab95a52_cryptolocker.exe
Resource
win10v2004-20231215-en
Malware Config
Targets
-
-
Target
2024-02-12_0b35d54aa4eabe8c392c31ff6ab95a52_cryptolocker
-
Size
54KB
-
MD5
0b35d54aa4eabe8c392c31ff6ab95a52
-
SHA1
f5994e935eac3667bceea51323703a18d00bcacc
-
SHA256
0bdb735ca7db2cea0e6c3c91f6b84497e1ff90691b857226e2bf13600efcf1fa
-
SHA512
9f203b084c647fcac02ea96f94cf3b435fdf125a86051167a7b4a888d3c1bcaacd439f3b88396c1dd7e055904c9cf3eb90e3d6f61f8a098662363544b6269708
-
SSDEEP
768:79inqyNR/QtOOtEvwDpjBK/iVTab3GRuv3VylSV/CdMFa:79mqyNhQMOtEvwDpjBPY7xv3g8ZFa
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-