General
-
Target
2024-04-23_9d308857f5e212daacc4a443b5cb9087_cryptolocker
-
Size
38KB
-
Sample
240423-2nw5race3y
-
MD5
9d308857f5e212daacc4a443b5cb9087
-
SHA1
1bf68760914dbe78f62a91d745c1a5db91cf980c
-
SHA256
c09c1f061caf4d62978a25d813d465493211bf08b0e73223921e06ca5bea4dac
-
SHA512
64cffded83bbc35ab7a013792a5c6119b3243cae35bad372a99b7b204490d4a529ec36074938582defd88f3f033898e26240192fd1d213d7a7bba0caac5d7dc4
-
SSDEEP
768:bA74zYcgT/Ekd0ryfjPIunqpeNswmT3He:bA6YcA/X6G0W143+
Static task
static1
Behavioral task
behavioral1
Sample
2024-04-23_9d308857f5e212daacc4a443b5cb9087_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-04-23_9d308857f5e212daacc4a443b5cb9087_cryptolocker.exe
Resource
win10v2004-20240412-en
Malware Config
Targets
-
-
Target
2024-04-23_9d308857f5e212daacc4a443b5cb9087_cryptolocker
-
Size
38KB
-
MD5
9d308857f5e212daacc4a443b5cb9087
-
SHA1
1bf68760914dbe78f62a91d745c1a5db91cf980c
-
SHA256
c09c1f061caf4d62978a25d813d465493211bf08b0e73223921e06ca5bea4dac
-
SHA512
64cffded83bbc35ab7a013792a5c6119b3243cae35bad372a99b7b204490d4a529ec36074938582defd88f3f033898e26240192fd1d213d7a7bba0caac5d7dc4
-
SSDEEP
768:bA74zYcgT/Ekd0ryfjPIunqpeNswmT3He:bA6YcA/X6G0W143+
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-