General
-
Target
2024-04-26_8962d02380003991c4e7b77776b4565f_cryptolocker
-
Size
33KB
-
Sample
240426-2abxnadd45
-
MD5
8962d02380003991c4e7b77776b4565f
-
SHA1
5a95000e73dcd265e50a780f96d75dc5348f22e2
-
SHA256
2da1398f2b105ee8f80b050159b54d51c9ba128b9448aeb3ab0787418f8aaf8d
-
SHA512
6f791fedd75e7ff7cea812e36c27f7689dee9337c39452a9959de208894ad3603bf9f71a4eac7e4d49ec10056860358872fa4a290d53207e3b985eddcfe81780
-
SSDEEP
768:bxNQIE0eBhkL2Fo1CCwgfjOg9Arbkzos5M4b:bxNrC7kYo1Fxf2rYAq
Static task
static1
Behavioral task
behavioral1
Sample
2024-04-26_8962d02380003991c4e7b77776b4565f_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-04-26_8962d02380003991c4e7b77776b4565f_cryptolocker.exe
Resource
win10v2004-20240419-en
Malware Config
Targets
-
-
Target
2024-04-26_8962d02380003991c4e7b77776b4565f_cryptolocker
-
Size
33KB
-
MD5
8962d02380003991c4e7b77776b4565f
-
SHA1
5a95000e73dcd265e50a780f96d75dc5348f22e2
-
SHA256
2da1398f2b105ee8f80b050159b54d51c9ba128b9448aeb3ab0787418f8aaf8d
-
SHA512
6f791fedd75e7ff7cea812e36c27f7689dee9337c39452a9959de208894ad3603bf9f71a4eac7e4d49ec10056860358872fa4a290d53207e3b985eddcfe81780
-
SSDEEP
768:bxNQIE0eBhkL2Fo1CCwgfjOg9Arbkzos5M4b:bxNrC7kYo1Fxf2rYAq
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-