General
-
Target
2024-05-14_0224ff12e526a1d75b04141e875c9474_cryptolocker
-
Size
70KB
-
Sample
240514-ez17hsbb77
-
MD5
0224ff12e526a1d75b04141e875c9474
-
SHA1
7d032b1908a6c7a4da3b0572c7bfc9de41448351
-
SHA256
279ecf6e6c13fc17bf0b35020df942841c6e522a785daf29f00b177d393089ee
-
SHA512
6ab436a9ae27a604e36f01eb500dcebc7fba3648600c2b35eec6a35535e27521e94d1fc7596fd44d45af5d6c90f1f861c18fe0608ff0255edaa03526c2d42cd1
-
SSDEEP
768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4ZPsED3VK2+ZtyOjgO4r9vFAg2rq2g1B/RL:vj+jsMQMOtEvwDpj5HZYTjipvF24j
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-14_0224ff12e526a1d75b04141e875c9474_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-05-14_0224ff12e526a1d75b04141e875c9474_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-05-14_0224ff12e526a1d75b04141e875c9474_cryptolocker
-
Size
70KB
-
MD5
0224ff12e526a1d75b04141e875c9474
-
SHA1
7d032b1908a6c7a4da3b0572c7bfc9de41448351
-
SHA256
279ecf6e6c13fc17bf0b35020df942841c6e522a785daf29f00b177d393089ee
-
SHA512
6ab436a9ae27a604e36f01eb500dcebc7fba3648600c2b35eec6a35535e27521e94d1fc7596fd44d45af5d6c90f1f861c18fe0608ff0255edaa03526c2d42cd1
-
SSDEEP
768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4ZPsED3VK2+ZtyOjgO4r9vFAg2rq2g1B/RL:vj+jsMQMOtEvwDpj5HZYTjipvF24j
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-