General
-
Target
2024-05-07_31fae58d80d58e302225aac9b210762a_cryptolocker
-
Size
55KB
-
Sample
240507-h9d2hsef7t
-
MD5
31fae58d80d58e302225aac9b210762a
-
SHA1
927fa7cba3fd0acab02820ecd951a89603bf53a7
-
SHA256
7efd2c2255672a820d9b6daf0a8a764dcd67b86338598fb46963e6397fea7ac1
-
SHA512
65ad3a2f8c532056d64a59bd262c6c19b0da8bc702b4bfb9ebb41fb1478f02346fffc3692f1f12e4d59da1ad6076f77770fc00e17158330a654fc8c180d403a1
-
SSDEEP
768:bIDOw9UiaCHfjnE0Sfa7ilR0p9u6p4ICNBCXK9XbTb8pu7:bIDOw9a0DwitDZzcTL7
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-07_31fae58d80d58e302225aac9b210762a_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-05-07_31fae58d80d58e302225aac9b210762a_cryptolocker.exe
Resource
win10v2004-20240419-en
Malware Config
Targets
-
-
Target
2024-05-07_31fae58d80d58e302225aac9b210762a_cryptolocker
-
Size
55KB
-
MD5
31fae58d80d58e302225aac9b210762a
-
SHA1
927fa7cba3fd0acab02820ecd951a89603bf53a7
-
SHA256
7efd2c2255672a820d9b6daf0a8a764dcd67b86338598fb46963e6397fea7ac1
-
SHA512
65ad3a2f8c532056d64a59bd262c6c19b0da8bc702b4bfb9ebb41fb1478f02346fffc3692f1f12e4d59da1ad6076f77770fc00e17158330a654fc8c180d403a1
-
SSDEEP
768:bIDOw9UiaCHfjnE0Sfa7ilR0p9u6p4ICNBCXK9XbTb8pu7:bIDOw9a0DwitDZzcTL7
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-