General
-
Target
2024-04-27_91b225b22e87d262ed81052e7fee84bb_cryptolocker
-
Size
31KB
-
Sample
240427-2jvq5aad8t
-
MD5
91b225b22e87d262ed81052e7fee84bb
-
SHA1
1f6395ae0dd8bb10acc4861844d949c7fbd555f8
-
SHA256
d98895867143ec5c69f3f8c9a8d1769b11380f36ac5f897ece5ae28d62eef63a
-
SHA512
2ef313de3a55f9347f0926cc8c2024adc2b260cbed5d10dae9b9932957366741cc99be40d66ee66c537f965d640bca8cf592e9e888ee0d1947fcff49889b9a3b
-
SSDEEP
384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTjA:bG74zYcgT/Ekd0ryfjfA
Static task
static1
Behavioral task
behavioral1
Sample
2024-04-27_91b225b22e87d262ed81052e7fee84bb_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-04-27_91b225b22e87d262ed81052e7fee84bb_cryptolocker.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
2024-04-27_91b225b22e87d262ed81052e7fee84bb_cryptolocker
-
Size
31KB
-
MD5
91b225b22e87d262ed81052e7fee84bb
-
SHA1
1f6395ae0dd8bb10acc4861844d949c7fbd555f8
-
SHA256
d98895867143ec5c69f3f8c9a8d1769b11380f36ac5f897ece5ae28d62eef63a
-
SHA512
2ef313de3a55f9347f0926cc8c2024adc2b260cbed5d10dae9b9932957366741cc99be40d66ee66c537f965d640bca8cf592e9e888ee0d1947fcff49889b9a3b
-
SSDEEP
384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTjA:bG74zYcgT/Ekd0ryfjfA
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-