General
-
Target
2024-05-21_6c95ead0ead69831fb83485d7f294c04_cryptolocker
-
Size
46KB
-
Sample
240521-s4ytvaag8x
-
MD5
6c95ead0ead69831fb83485d7f294c04
-
SHA1
6831c757a058b4aa5ea10353a72c47339fa05659
-
SHA256
2dd9ec4710d4d4c0752abc6af17df9fd665f0c5197028cf5efdbb067dc818691
-
SHA512
449da51c1b23583676ea744a93938cb4186450cdfaa2c8fa16d073bca2b6ae5f3125694df4dce5344635be0c34c1ec7f56d55936b5e614abca703f6cd40da89a
-
SSDEEP
768:P6LsoVEeegiZPvEhHSP+gp/QtOOtEvwDpjBBMLZdzuqpXsiE8Wq/DpkF:P6Q0ElP6G+gJQMOtEvwDpjB8WMl6
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-21_6c95ead0ead69831fb83485d7f294c04_cryptolocker.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
2024-05-21_6c95ead0ead69831fb83485d7f294c04_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-05-21_6c95ead0ead69831fb83485d7f294c04_cryptolocker
-
Size
46KB
-
MD5
6c95ead0ead69831fb83485d7f294c04
-
SHA1
6831c757a058b4aa5ea10353a72c47339fa05659
-
SHA256
2dd9ec4710d4d4c0752abc6af17df9fd665f0c5197028cf5efdbb067dc818691
-
SHA512
449da51c1b23583676ea744a93938cb4186450cdfaa2c8fa16d073bca2b6ae5f3125694df4dce5344635be0c34c1ec7f56d55936b5e614abca703f6cd40da89a
-
SSDEEP
768:P6LsoVEeegiZPvEhHSP+gp/QtOOtEvwDpjBBMLZdzuqpXsiE8Wq/DpkF:P6Q0ElP6G+gJQMOtEvwDpjB8WMl6
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-