General
-
Target
2024-04-27_638f4cb3f54e9189db0e4a63a8ec76c5_cryptolocker
-
Size
85KB
-
Sample
240427-2gjwvaad3x
-
MD5
638f4cb3f54e9189db0e4a63a8ec76c5
-
SHA1
cc1fa3211e0d946ee93c2bfa60c56209e751f551
-
SHA256
d309c66f74e56e6c98ac0b2f105f1ab47f26d2b3a72348682ca09f8fea31d501
-
SHA512
b70dd307712c2f41c9cf0bf8eb7846cf6ddb9d970c9cb2d5340ef44720c8b3332783f8d7b1ee04495e88123b88524103ebfdb0a714267c196695b6429eb29e78
-
SSDEEP
1536:V6QFElP6n+gMQMOtEvwDpjyaLccVNl6ax:V6a+pOtEvwDpjvpl
Static task
static1
Behavioral task
behavioral1
Sample
2024-04-27_638f4cb3f54e9189db0e4a63a8ec76c5_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-04-27_638f4cb3f54e9189db0e4a63a8ec76c5_cryptolocker.exe
Resource
win10v2004-20240419-en
Malware Config
Targets
-
-
Target
2024-04-27_638f4cb3f54e9189db0e4a63a8ec76c5_cryptolocker
-
Size
85KB
-
MD5
638f4cb3f54e9189db0e4a63a8ec76c5
-
SHA1
cc1fa3211e0d946ee93c2bfa60c56209e751f551
-
SHA256
d309c66f74e56e6c98ac0b2f105f1ab47f26d2b3a72348682ca09f8fea31d501
-
SHA512
b70dd307712c2f41c9cf0bf8eb7846cf6ddb9d970c9cb2d5340ef44720c8b3332783f8d7b1ee04495e88123b88524103ebfdb0a714267c196695b6429eb29e78
-
SSDEEP
1536:V6QFElP6n+gMQMOtEvwDpjyaLccVNl6ax:V6a+pOtEvwDpjvpl
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-