General
-
Target
2024-03-12_834d5ea0cde765981364d059742e0359_cryptolocker
-
Size
33KB
-
Sample
240312-gc1nksbf59
-
MD5
834d5ea0cde765981364d059742e0359
-
SHA1
07d5034b0d6bd1455b6b569f4f724c3e1f5ab2ad
-
SHA256
8ed74937eef7bdf98f725b64ac9811427d67c4387d6f5604e0367303c49aa642
-
SHA512
d619d50594d48ee4a8fb7953928dc5bc0658eb5c93855b63d12251bebe90a350753ca6abbd5cf38bcac33af1fa5c171274907ce4f4b7848c524dc565763e071b
-
SSDEEP
384:bA74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUgIunIVpeNs23mAA6lJ:bA74zYcgT/Ekd0ryfjPIunqpeNswmq
Static task
static1
Behavioral task
behavioral1
Sample
2024-03-12_834d5ea0cde765981364d059742e0359_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-03-12_834d5ea0cde765981364d059742e0359_cryptolocker.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-03-12_834d5ea0cde765981364d059742e0359_cryptolocker
-
Size
33KB
-
MD5
834d5ea0cde765981364d059742e0359
-
SHA1
07d5034b0d6bd1455b6b569f4f724c3e1f5ab2ad
-
SHA256
8ed74937eef7bdf98f725b64ac9811427d67c4387d6f5604e0367303c49aa642
-
SHA512
d619d50594d48ee4a8fb7953928dc5bc0658eb5c93855b63d12251bebe90a350753ca6abbd5cf38bcac33af1fa5c171274907ce4f4b7848c524dc565763e071b
-
SSDEEP
384:bA74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUgIunIVpeNs23mAA6lJ:bA74zYcgT/Ekd0ryfjPIunqpeNswmq
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-