General
-
Target
2024-02-12_3015fa5251c07ad858bb953489ff1339_cryptolocker
-
Size
47KB
-
Sample
240212-yllpfsbc8z
-
MD5
3015fa5251c07ad858bb953489ff1339
-
SHA1
f0905d6cf4eca7a9d864b5a67204b3de9dd1c88c
-
SHA256
18cf787bea8880b8605e3083053bc7256eb254d14462eaf75bf05439a1b082b7
-
SHA512
fea34b20c107c31c2c58b210e182a3e6bcdf80b804bd6755bae6c1580967c6c69cdd1d210f6b4a1a24238f6bbeb8885d12c3a2474a51f0213588f09b1a6dd5b3
-
SSDEEP
768:bgX4zYcgTEu6QOaryfjqDlC6JFbK37YbDu5z/hDx:bgGYcA/53GAA6y37nbF
Static task
static1
Behavioral task
behavioral1
Sample
2024-02-12_3015fa5251c07ad858bb953489ff1339_cryptolocker.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
2024-02-12_3015fa5251c07ad858bb953489ff1339_cryptolocker.exe
Resource
win10v2004-20231215-en
Malware Config
Targets
-
-
Target
2024-02-12_3015fa5251c07ad858bb953489ff1339_cryptolocker
-
Size
47KB
-
MD5
3015fa5251c07ad858bb953489ff1339
-
SHA1
f0905d6cf4eca7a9d864b5a67204b3de9dd1c88c
-
SHA256
18cf787bea8880b8605e3083053bc7256eb254d14462eaf75bf05439a1b082b7
-
SHA512
fea34b20c107c31c2c58b210e182a3e6bcdf80b804bd6755bae6c1580967c6c69cdd1d210f6b4a1a24238f6bbeb8885d12c3a2474a51f0213588f09b1a6dd5b3
-
SSDEEP
768:bgX4zYcgTEu6QOaryfjqDlC6JFbK37YbDu5z/hDx:bgGYcA/53GAA6y37nbF
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-