General
-
Target
2024-05-21_4700e2ab30986b42170c21e6324783cc_cryptolocker
-
Size
40KB
-
Sample
240521-t461wsca5t
-
MD5
4700e2ab30986b42170c21e6324783cc
-
SHA1
d06d8e17625d0885ac86a5c6a6ae6f55406bbc1b
-
SHA256
aae2a2618318c9a84312833ba0deb1108a5b13ec0b3c1dc95c8e42d7b32e881f
-
SHA512
a99daf463a53dd25c506c49a613e6ece7c224f4f7ef835b0e473dddda96d8993cec9975a23b7f4f092926098ebb107522a95471ce906688ce082f8b77ac780b5
-
SSDEEP
768:bA74zYcgT/Ekd0ryfjPIunqpeNswmT3HwT9W:bA6YcA/X6G0W143QTY
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-21_4700e2ab30986b42170c21e6324783cc_cryptolocker.exe
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
2024-05-21_4700e2ab30986b42170c21e6324783cc_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-05-21_4700e2ab30986b42170c21e6324783cc_cryptolocker
-
Size
40KB
-
MD5
4700e2ab30986b42170c21e6324783cc
-
SHA1
d06d8e17625d0885ac86a5c6a6ae6f55406bbc1b
-
SHA256
aae2a2618318c9a84312833ba0deb1108a5b13ec0b3c1dc95c8e42d7b32e881f
-
SHA512
a99daf463a53dd25c506c49a613e6ece7c224f4f7ef835b0e473dddda96d8993cec9975a23b7f4f092926098ebb107522a95471ce906688ce082f8b77ac780b5
-
SSDEEP
768:bA74zYcgT/Ekd0ryfjPIunqpeNswmT3HwT9W:bA6YcA/X6G0W143QTY
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-