General
-
Target
2024-04-06_c3e70d5a70e61da9d4661c31d8329c05_cryptolocker
-
Size
38KB
-
Sample
240406-q2pgaabf51
-
MD5
c3e70d5a70e61da9d4661c31d8329c05
-
SHA1
1efd79bcfe4d9f0d9ab8f09049a8fbd0ab5556f0
-
SHA256
d57e4e6d8de8a10b3612ffd8deac4aa7b6544e7d6b46530020303b481bb57afc
-
SHA512
c6e37ffd3d0f0da9eccf3adfadba418e4c71494cc2ccfd1f14396f2e1a7f4188b260d6f3d5f722e8824663f820dde1ff2a9adf96b2928537f52a3f7fd20e724d
-
SSDEEP
768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjLenUyE:ZzFbxmLPWQMOtEvwDpjLexE
Static task
static1
Behavioral task
behavioral1
Sample
2024-04-06_c3e70d5a70e61da9d4661c31d8329c05_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-04-06_c3e70d5a70e61da9d4661c31d8329c05_cryptolocker.exe
Resource
win10v2004-20240319-en
Malware Config
Targets
-
-
Target
2024-04-06_c3e70d5a70e61da9d4661c31d8329c05_cryptolocker
-
Size
38KB
-
MD5
c3e70d5a70e61da9d4661c31d8329c05
-
SHA1
1efd79bcfe4d9f0d9ab8f09049a8fbd0ab5556f0
-
SHA256
d57e4e6d8de8a10b3612ffd8deac4aa7b6544e7d6b46530020303b481bb57afc
-
SHA512
c6e37ffd3d0f0da9eccf3adfadba418e4c71494cc2ccfd1f14396f2e1a7f4188b260d6f3d5f722e8824663f820dde1ff2a9adf96b2928537f52a3f7fd20e724d
-
SSDEEP
768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjLenUyE:ZzFbxmLPWQMOtEvwDpjLexE
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-