General
-
Target
2024-02-14_e67f2c82fa3c9c9d650c10e7890102c1_cryptolocker
-
Size
37KB
-
Sample
240214-dk69jsfd4t
-
MD5
e67f2c82fa3c9c9d650c10e7890102c1
-
SHA1
cceed76d49a9f575f56a0a11c408a8e7fef24085
-
SHA256
89f4e6f09f76e3796c497a0e146a69246669592d75e212e0fbb2a79c2851dc92
-
SHA512
ebba0036be2bcf2bec7cf8267ac0694c2fba1e95029481b94ff18b494512089638fab671fd8b4307ab19261d79544a1e412ff0583b6e67454c0b97a11ee7fb0c
-
SSDEEP
384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNiJXxXunRClp:btB9g/WItCSsAGjX7e9N0hunRClp
Static task
static1
Behavioral task
behavioral1
Sample
2024-02-14_e67f2c82fa3c9c9d650c10e7890102c1_cryptolocker.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
2024-02-14_e67f2c82fa3c9c9d650c10e7890102c1_cryptolocker.exe
Resource
win10v2004-20231222-en
Malware Config
Targets
-
-
Target
2024-02-14_e67f2c82fa3c9c9d650c10e7890102c1_cryptolocker
-
Size
37KB
-
MD5
e67f2c82fa3c9c9d650c10e7890102c1
-
SHA1
cceed76d49a9f575f56a0a11c408a8e7fef24085
-
SHA256
89f4e6f09f76e3796c497a0e146a69246669592d75e212e0fbb2a79c2851dc92
-
SHA512
ebba0036be2bcf2bec7cf8267ac0694c2fba1e95029481b94ff18b494512089638fab671fd8b4307ab19261d79544a1e412ff0583b6e67454c0b97a11ee7fb0c
-
SSDEEP
384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNiJXxXunRClp:btB9g/WItCSsAGjX7e9N0hunRClp
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-