General
-
Target
2024-03-25_7b4de56fd1780afb9d81e1348c22a68f_cryptolocker
-
Size
56KB
-
Sample
240325-qxkmjahe93
-
MD5
7b4de56fd1780afb9d81e1348c22a68f
-
SHA1
70e0ac207e2b4b6e4aa87bbe7f86812ea0aee8d1
-
SHA256
6e461c718038e66c034ae10d9fd2abde472e28f7fc04e05153ad2ed73ead2d8c
-
SHA512
71553112b39bb94da0e6047e0712a7e07bec9d9ccc25ffe80d89bf6499961723b7bb79d5e063a0f446f02da80e4a1a514334b9bad11db1f7a6b40707cc1c394d
-
SSDEEP
768:79inqyNR/QtOOtEvwDpjBK/iVTab3GRuv3VylsPQQWTa/2wx:79mqyNhQMOtEvwDpjBPY7xv3gy9WTAj
Static task
static1
Behavioral task
behavioral1
Sample
2024-03-25_7b4de56fd1780afb9d81e1348c22a68f_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-03-25_7b4de56fd1780afb9d81e1348c22a68f_cryptolocker.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-03-25_7b4de56fd1780afb9d81e1348c22a68f_cryptolocker
-
Size
56KB
-
MD5
7b4de56fd1780afb9d81e1348c22a68f
-
SHA1
70e0ac207e2b4b6e4aa87bbe7f86812ea0aee8d1
-
SHA256
6e461c718038e66c034ae10d9fd2abde472e28f7fc04e05153ad2ed73ead2d8c
-
SHA512
71553112b39bb94da0e6047e0712a7e07bec9d9ccc25ffe80d89bf6499961723b7bb79d5e063a0f446f02da80e4a1a514334b9bad11db1f7a6b40707cc1c394d
-
SSDEEP
768:79inqyNR/QtOOtEvwDpjBK/iVTab3GRuv3VylsPQQWTa/2wx:79mqyNhQMOtEvwDpjBPY7xv3gy9WTAj
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-