General
-
Target
2024-04-21_73554f28a47d1e2259f1f788fdbd7bb2_cryptolocker
-
Size
125KB
-
Sample
240421-bpzddsfe7t
-
MD5
73554f28a47d1e2259f1f788fdbd7bb2
-
SHA1
97aa0e61de2cb0f13f3aa6f9928c9c542de9071a
-
SHA256
da1d515aa31b9266dba8f4d9f637c75bd45a56c7ffe3c9d4be3c310f7e77792d
-
SHA512
6ddb5fef35c39b0332b895b1e79ce0d4681c7e54df18a2f7634422ff7946123eb4fb92eb126730f23c6459d0fa324da5842c3068602e62adf926a63864694074
-
SSDEEP
1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfIuBKLUYOVbvh//vV:vCjsIOtEvwDpj5H9YvQd2RD
Static task
static1
Behavioral task
behavioral1
Sample
2024-04-21_73554f28a47d1e2259f1f788fdbd7bb2_cryptolocker.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
2024-04-21_73554f28a47d1e2259f1f788fdbd7bb2_cryptolocker.exe
Resource
win10v2004-20240412-en
Malware Config
Targets
-
-
Target
2024-04-21_73554f28a47d1e2259f1f788fdbd7bb2_cryptolocker
-
Size
125KB
-
MD5
73554f28a47d1e2259f1f788fdbd7bb2
-
SHA1
97aa0e61de2cb0f13f3aa6f9928c9c542de9071a
-
SHA256
da1d515aa31b9266dba8f4d9f637c75bd45a56c7ffe3c9d4be3c310f7e77792d
-
SHA512
6ddb5fef35c39b0332b895b1e79ce0d4681c7e54df18a2f7634422ff7946123eb4fb92eb126730f23c6459d0fa324da5842c3068602e62adf926a63864694074
-
SSDEEP
1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfIuBKLUYOVbvh//vV:vCjsIOtEvwDpj5H9YvQd2RD
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-