General
-
Target
2024-04-26_70ae755434b3cfb49bae546ff3a54484_cryptolocker
-
Size
60KB
-
Sample
240426-3elhbsec36
-
MD5
70ae755434b3cfb49bae546ff3a54484
-
SHA1
96b7453406f6e6682df0c46b5b520236ddb19305
-
SHA256
687641aa2fb0da5fd23506b21d5aae571544fc957d629b30174b131475c9252d
-
SHA512
221f9703de7dadcc5eb9386cfe81c443566493221cf51fd0a0aec8b651fe8c14f6ef63d10dbbe3ab80aff3cc66fca39b1d2b3a3fab5e2dea3619f05138619719
-
SSDEEP
1536:btB9g/xtCSKfxLIc//Xr+/AO/kIZ3ft2nVuTKB6nggOlHdUHZni:btng54SMLr+/AO/kIhfoKMHdai
Static task
static1
Behavioral task
behavioral1
Sample
2024-04-26_70ae755434b3cfb49bae546ff3a54484_cryptolocker.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
2024-04-26_70ae755434b3cfb49bae546ff3a54484_cryptolocker.exe
Resource
win10v2004-20240419-en
Malware Config
Targets
-
-
Target
2024-04-26_70ae755434b3cfb49bae546ff3a54484_cryptolocker
-
Size
60KB
-
MD5
70ae755434b3cfb49bae546ff3a54484
-
SHA1
96b7453406f6e6682df0c46b5b520236ddb19305
-
SHA256
687641aa2fb0da5fd23506b21d5aae571544fc957d629b30174b131475c9252d
-
SHA512
221f9703de7dadcc5eb9386cfe81c443566493221cf51fd0a0aec8b651fe8c14f6ef63d10dbbe3ab80aff3cc66fca39b1d2b3a3fab5e2dea3619f05138619719
-
SSDEEP
1536:btB9g/xtCSKfxLIc//Xr+/AO/kIZ3ft2nVuTKB6nggOlHdUHZni:btng54SMLr+/AO/kIhfoKMHdai
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-