General
-
Target
2024-02-12_5b1d2071ecec8973156b5f67fff633e5_cryptolocker
-
Size
384KB
-
Sample
240212-yqy6cabd4x
-
MD5
5b1d2071ecec8973156b5f67fff633e5
-
SHA1
f06fb6677e1bb483c9ca576d47e542027e64189d
-
SHA256
42d1894422e89868bfead8b67fee3f445b424b366029402a4960dcd4310ff333
-
SHA512
2993b4f6659c573b6b2dbf1f8ef7bb394b4f4c72050c33c46f2eac1aff23491bf666e67ea3e68313f838feff337665815ea661b7b7f96e04ef72bf82c3d4d729
-
SSDEEP
6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXQ:nnOflT/ZFIjBz3xjTxynGUOUhXQ
Static task
static1
Behavioral task
behavioral1
Sample
2024-02-12_5b1d2071ecec8973156b5f67fff633e5_cryptolocker.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
2024-02-12_5b1d2071ecec8973156b5f67fff633e5_cryptolocker.exe
Resource
win10v2004-20231215-en
Malware Config
Targets
-
-
Target
2024-02-12_5b1d2071ecec8973156b5f67fff633e5_cryptolocker
-
Size
384KB
-
MD5
5b1d2071ecec8973156b5f67fff633e5
-
SHA1
f06fb6677e1bb483c9ca576d47e542027e64189d
-
SHA256
42d1894422e89868bfead8b67fee3f445b424b366029402a4960dcd4310ff333
-
SHA512
2993b4f6659c573b6b2dbf1f8ef7bb394b4f4c72050c33c46f2eac1aff23491bf666e67ea3e68313f838feff337665815ea661b7b7f96e04ef72bf82c3d4d729
-
SSDEEP
6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXQ:nnOflT/ZFIjBz3xjTxynGUOUhXQ
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-