General
-
Target
2024-05-21_3dc5d8f08e9d1f4fb64b94e5a01b24b2_cryptolocker
-
Size
62KB
-
Sample
240521-s5hh9aaf86
-
MD5
3dc5d8f08e9d1f4fb64b94e5a01b24b2
-
SHA1
586388baa3f43c0d6d2b33b161056a478f0873c6
-
SHA256
18a3b0ed094abc0bd6d5c7f0649e81f8a67594dd76ea9bd25f6e5087da9b9983
-
SHA512
a71a9dfeaa3ff4dbbf7660982339564f9e12bba8e63174d348f8356a5d7b9a2681f36e69175aa335a607d48c7d9fd295fb11f958451aa0bc04b18947a200bc0a
-
SSDEEP
768:3Uz7yVEhs9+Hs1SQtOOtEvwDpjO9+4hdCY8EQMjpi/Wpi3B3URiLqCyLuAx8XG9P:3P+HsMQMOtEvwDpjoHy7B3g9CWuAxWS
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-21_3dc5d8f08e9d1f4fb64b94e5a01b24b2_cryptolocker.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
2024-05-21_3dc5d8f08e9d1f4fb64b94e5a01b24b2_cryptolocker.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
2024-05-21_3dc5d8f08e9d1f4fb64b94e5a01b24b2_cryptolocker
-
Size
62KB
-
MD5
3dc5d8f08e9d1f4fb64b94e5a01b24b2
-
SHA1
586388baa3f43c0d6d2b33b161056a478f0873c6
-
SHA256
18a3b0ed094abc0bd6d5c7f0649e81f8a67594dd76ea9bd25f6e5087da9b9983
-
SHA512
a71a9dfeaa3ff4dbbf7660982339564f9e12bba8e63174d348f8356a5d7b9a2681f36e69175aa335a607d48c7d9fd295fb11f958451aa0bc04b18947a200bc0a
-
SSDEEP
768:3Uz7yVEhs9+Hs1SQtOOtEvwDpjO9+4hdCY8EQMjpi/Wpi3B3URiLqCyLuAx8XG9P:3P+HsMQMOtEvwDpjoHy7B3g9CWuAxWS
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-