General
-
Target
2024-05-21_ee689708d2b907e9796b2804d4ce2f1d_cryptolocker
-
Size
83KB
-
Sample
240521-tjbdgsbc32
-
MD5
ee689708d2b907e9796b2804d4ce2f1d
-
SHA1
4f383c4407329901533849a7cf175fb5dabc07e7
-
SHA256
5d43693a3e0fc13ec77917334b23f9c84b8d3c019615346e2da87fab4b43f9ad
-
SHA512
b3488d19b6b8707a6d804c1c20563fe2e0bf2b900e0ba2b5fd88471bbb939e626ed4ed3e39c8207ee64c58b2adf0fd7b8c5db66a9210c69622d3413e74ac9906
-
SSDEEP
1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMrpb:TCjsIOtEvwDpj5HE/OUHnSMP
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-21_ee689708d2b907e9796b2804d4ce2f1d_cryptolocker.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
2024-05-21_ee689708d2b907e9796b2804d4ce2f1d_cryptolocker.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
2024-05-21_ee689708d2b907e9796b2804d4ce2f1d_cryptolocker
-
Size
83KB
-
MD5
ee689708d2b907e9796b2804d4ce2f1d
-
SHA1
4f383c4407329901533849a7cf175fb5dabc07e7
-
SHA256
5d43693a3e0fc13ec77917334b23f9c84b8d3c019615346e2da87fab4b43f9ad
-
SHA512
b3488d19b6b8707a6d804c1c20563fe2e0bf2b900e0ba2b5fd88471bbb939e626ed4ed3e39c8207ee64c58b2adf0fd7b8c5db66a9210c69622d3413e74ac9906
-
SSDEEP
1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMrpb:TCjsIOtEvwDpj5HE/OUHnSMP
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-