General
-
Target
2024-05-21_c7370437e1a8f07e8460d6aca0028163_cryptolocker
-
Size
39KB
-
Sample
240521-s7a7ysag62
-
MD5
c7370437e1a8f07e8460d6aca0028163
-
SHA1
32970bb3d678142edd87d8c4e8bc43cb7d75c96c
-
SHA256
6094215f3978ad2f20b20fc27781b87921efe6710c2a33834c43108dd2d29685
-
SHA512
2c779e16b63de6e63c1829e53c5b5d516cddef894e168361f8562eee939d699c056d6b56ce1bf73f4f259cc1e8d2514d7dce4c330493bb48df1efcd107e31af3
-
SSDEEP
768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjLeJAsKuDbj:ZzFbxmLPWQMOtEvwDpjLeJAsKcbj
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-21_c7370437e1a8f07e8460d6aca0028163_cryptolocker.exe
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
2024-05-21_c7370437e1a8f07e8460d6aca0028163_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-05-21_c7370437e1a8f07e8460d6aca0028163_cryptolocker
-
Size
39KB
-
MD5
c7370437e1a8f07e8460d6aca0028163
-
SHA1
32970bb3d678142edd87d8c4e8bc43cb7d75c96c
-
SHA256
6094215f3978ad2f20b20fc27781b87921efe6710c2a33834c43108dd2d29685
-
SHA512
2c779e16b63de6e63c1829e53c5b5d516cddef894e168361f8562eee939d699c056d6b56ce1bf73f4f259cc1e8d2514d7dce4c330493bb48df1efcd107e31af3
-
SSDEEP
768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjLeJAsKuDbj:ZzFbxmLPWQMOtEvwDpjLeJAsKcbj
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-