General
-
Target
2024-04-27_07884fb12070119be2c931cf2f28a948_cryptolocker
-
Size
39KB
-
Sample
240427-b571gage44
-
MD5
07884fb12070119be2c931cf2f28a948
-
SHA1
87ce1dcfeacf08a9e5750b920698939798ff89c3
-
SHA256
2ac657543e8dda6351e50cca17467e5b5667257c7292dae3bc1ce69158588473
-
SHA512
f11525f1e02ea1a263c45980e6caae16c7edb005a2f65ab1811e61e7996fc93685f171cb24f7740d64d2c253446272d369b8a0ede6fb86471eefddab856981ef
-
SSDEEP
768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjLeJAsKuDk9N:ZzFbxmLPWQMOtEvwDpjLeJAsKcU
Static task
static1
Behavioral task
behavioral1
Sample
2024-04-27_07884fb12070119be2c931cf2f28a948_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-04-27_07884fb12070119be2c931cf2f28a948_cryptolocker.exe
Resource
win10v2004-20240419-en
Malware Config
Targets
-
-
Target
2024-04-27_07884fb12070119be2c931cf2f28a948_cryptolocker
-
Size
39KB
-
MD5
07884fb12070119be2c931cf2f28a948
-
SHA1
87ce1dcfeacf08a9e5750b920698939798ff89c3
-
SHA256
2ac657543e8dda6351e50cca17467e5b5667257c7292dae3bc1ce69158588473
-
SHA512
f11525f1e02ea1a263c45980e6caae16c7edb005a2f65ab1811e61e7996fc93685f171cb24f7740d64d2c253446272d369b8a0ede6fb86471eefddab856981ef
-
SSDEEP
768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjLeJAsKuDk9N:ZzFbxmLPWQMOtEvwDpjLeJAsKcU
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-