General
-
Target
2024-02-12_397d7744d84b47afdb37659d84c314da_cryptolocker
-
Size
60KB
-
Sample
240212-ymazcabc9y
-
MD5
397d7744d84b47afdb37659d84c314da
-
SHA1
a3aec663ce68295f407a207407513c559368dfc5
-
SHA256
066ab2af135dd503c687e700b169b9fd680a3f9ae69164b7787eddaf8df69ff7
-
SHA512
0044732ba913ca66321a27dd5b5c74605d7763fe8110fa00082e175d40d8c146226f8ab0b08cd45700c553c231bb724901f43fa9765b31e0fc60df53cfa788f4
-
SSDEEP
1536:btB9g/xtCSKfxLIc//Xr+/AO/kIZ3ft2nVuTKB6nggOlHdUHNn:btng54SMLr+/AO/kIhfoKMHd0
Static task
static1
Behavioral task
behavioral1
Sample
2024-02-12_397d7744d84b47afdb37659d84c314da_cryptolocker.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
2024-02-12_397d7744d84b47afdb37659d84c314da_cryptolocker.exe
Resource
win10v2004-20231222-en
Malware Config
Targets
-
-
Target
2024-02-12_397d7744d84b47afdb37659d84c314da_cryptolocker
-
Size
60KB
-
MD5
397d7744d84b47afdb37659d84c314da
-
SHA1
a3aec663ce68295f407a207407513c559368dfc5
-
SHA256
066ab2af135dd503c687e700b169b9fd680a3f9ae69164b7787eddaf8df69ff7
-
SHA512
0044732ba913ca66321a27dd5b5c74605d7763fe8110fa00082e175d40d8c146226f8ab0b08cd45700c553c231bb724901f43fa9765b31e0fc60df53cfa788f4
-
SSDEEP
1536:btB9g/xtCSKfxLIc//Xr+/AO/kIZ3ft2nVuTKB6nggOlHdUHNn:btng54SMLr+/AO/kIhfoKMHd0
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-