General
-
Target
2024-02-12_8b0ea71c34f1ef89b98759bf7f849021_cryptolocker
-
Size
47KB
-
Sample
240212-yvrbasdb44
-
MD5
8b0ea71c34f1ef89b98759bf7f849021
-
SHA1
5f295a9a86724ec9ba7f0ae636c219894b84b904
-
SHA256
a00a1e8beff697f2c15e82fd11b8ec0a5577ed68631880656b34bf3f99f9c445
-
SHA512
e470815330aed1ee44a8c9d982fe3496f8995392b11a2273703bfa8c83d6ee47c33e4738e83106f8bc74e50fb3714fe746b72f5bd8a37f7072044afae1092fe3
-
SSDEEP
768:bgX4zYcgTEu6QOaryfjqDlC6JFbK37Yl6dIDY:bgGYcA/53GAA6y37Q6dIk
Static task
static1
Behavioral task
behavioral1
Sample
2024-02-12_8b0ea71c34f1ef89b98759bf7f849021_cryptolocker.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
2024-02-12_8b0ea71c34f1ef89b98759bf7f849021_cryptolocker.exe
Resource
win10v2004-20231215-en
Malware Config
Targets
-
-
Target
2024-02-12_8b0ea71c34f1ef89b98759bf7f849021_cryptolocker
-
Size
47KB
-
MD5
8b0ea71c34f1ef89b98759bf7f849021
-
SHA1
5f295a9a86724ec9ba7f0ae636c219894b84b904
-
SHA256
a00a1e8beff697f2c15e82fd11b8ec0a5577ed68631880656b34bf3f99f9c445
-
SHA512
e470815330aed1ee44a8c9d982fe3496f8995392b11a2273703bfa8c83d6ee47c33e4738e83106f8bc74e50fb3714fe746b72f5bd8a37f7072044afae1092fe3
-
SSDEEP
768:bgX4zYcgTEu6QOaryfjqDlC6JFbK37Yl6dIDY:bgGYcA/53GAA6y37Q6dIk
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-