General
-
Target
2024-04-26_d1fdbf77257065578e7ad01294b55392_cryptolocker
-
Size
85KB
-
Sample
240426-3gnepsfb8t
-
MD5
d1fdbf77257065578e7ad01294b55392
-
SHA1
ff27d56b600945b50a52f63f5cbd4b924f035eff
-
SHA256
1fbc7b57c4b9f1ae614895cbc6e124c8e5c718d150e9a44c33ae7a2e6429c1ed
-
SHA512
4899ff60eb66bfbd5e562e3e7ef308557285be27000e53428e7f2f65bdfa92e21c49f0774f8658a3fa88e88627c9dbd44dabaa7bf81d19ccaf812ae579089be6
-
SSDEEP
768:V6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpj/MLa5VccPtNw5CS95yFPnYcU:V6QFElP6n+gMQMOtEvwDpjyaLccVNl6X
Static task
static1
Behavioral task
behavioral1
Sample
2024-04-26_d1fdbf77257065578e7ad01294b55392_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-04-26_d1fdbf77257065578e7ad01294b55392_cryptolocker.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-04-26_d1fdbf77257065578e7ad01294b55392_cryptolocker
-
Size
85KB
-
MD5
d1fdbf77257065578e7ad01294b55392
-
SHA1
ff27d56b600945b50a52f63f5cbd4b924f035eff
-
SHA256
1fbc7b57c4b9f1ae614895cbc6e124c8e5c718d150e9a44c33ae7a2e6429c1ed
-
SHA512
4899ff60eb66bfbd5e562e3e7ef308557285be27000e53428e7f2f65bdfa92e21c49f0774f8658a3fa88e88627c9dbd44dabaa7bf81d19ccaf812ae579089be6
-
SSDEEP
768:V6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpj/MLa5VccPtNw5CS95yFPnYcU:V6QFElP6n+gMQMOtEvwDpjyaLccVNl6X
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-