General
-
Target
2024-04-10_b8ac5963d695b97587504edc443bef74_cryptolocker
-
Size
40KB
-
Sample
240410-2f6n8agd4w
-
MD5
b8ac5963d695b97587504edc443bef74
-
SHA1
15a2ef4c83887e2a1a49813e1b0d5a393776b72e
-
SHA256
30e95a888ae701ab075864399b117335e7547f63b4a1b78fdaca04574fee5e6e
-
SHA512
7274f7b4aaef932d3bb92a394568df2300f1e6611d0dcf23f4cca205ad03fdcd21640b477b122d299e61dfcd36246e0048b9c3d0050ee3714b16a2046dbc3dbb
-
SSDEEP
768:bIDOw9UiaCHfjnE0Sf88AvvP1oghYvm9/6DyE9xgy1:bIDOw9a0Dwo3P1ojvUSD79yy1
Static task
static1
Behavioral task
behavioral1
Sample
2024-04-10_b8ac5963d695b97587504edc443bef74_cryptolocker.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
2024-04-10_b8ac5963d695b97587504edc443bef74_cryptolocker.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-04-10_b8ac5963d695b97587504edc443bef74_cryptolocker
-
Size
40KB
-
MD5
b8ac5963d695b97587504edc443bef74
-
SHA1
15a2ef4c83887e2a1a49813e1b0d5a393776b72e
-
SHA256
30e95a888ae701ab075864399b117335e7547f63b4a1b78fdaca04574fee5e6e
-
SHA512
7274f7b4aaef932d3bb92a394568df2300f1e6611d0dcf23f4cca205ad03fdcd21640b477b122d299e61dfcd36246e0048b9c3d0050ee3714b16a2046dbc3dbb
-
SSDEEP
768:bIDOw9UiaCHfjnE0Sf88AvvP1oghYvm9/6DyE9xgy1:bIDOw9a0Dwo3P1ojvUSD79yy1
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-