General
-
Target
2024-04-29_5b42bc4efe0067aa860dd469ba6291e5_cryptolocker
-
Size
43KB
-
Sample
240429-f5584abg35
-
MD5
5b42bc4efe0067aa860dd469ba6291e5
-
SHA1
89f78f655e14385078cfe0f8e545cf5ee8d0abee
-
SHA256
9e3d9313af4007202ca124e59a057850aa3131853de5f979ba47d54511422fe3
-
SHA512
2f8214527c9bf38cd59ed54b0b0ece336713a71af2e3e617f070c51308f19ff7fff43de2c8ad1e331fddaf442b733ef1348c1b8bf38a64a91ff4b50b40a7aa4c
-
SSDEEP
768:b7o/2n1TCraU6GD1a4X0WcO+wMVm+slAMphqp:bc/y2lkF0+Beqp
Static task
static1
Behavioral task
behavioral1
Sample
2024-04-29_5b42bc4efe0067aa860dd469ba6291e5_cryptolocker.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
2024-04-29_5b42bc4efe0067aa860dd469ba6291e5_cryptolocker.exe
Resource
win10v2004-20240419-en
Malware Config
Targets
-
-
Target
2024-04-29_5b42bc4efe0067aa860dd469ba6291e5_cryptolocker
-
Size
43KB
-
MD5
5b42bc4efe0067aa860dd469ba6291e5
-
SHA1
89f78f655e14385078cfe0f8e545cf5ee8d0abee
-
SHA256
9e3d9313af4007202ca124e59a057850aa3131853de5f979ba47d54511422fe3
-
SHA512
2f8214527c9bf38cd59ed54b0b0ece336713a71af2e3e617f070c51308f19ff7fff43de2c8ad1e331fddaf442b733ef1348c1b8bf38a64a91ff4b50b40a7aa4c
-
SSDEEP
768:b7o/2n1TCraU6GD1a4X0WcO+wMVm+slAMphqp:bc/y2lkF0+Beqp
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-