General
-
Target
2024-05-21_ef3a4afdc08152efabb508e78ea6929d_cryptolocker
-
Size
43KB
-
Sample
240521-tje2nsbd2x
-
MD5
ef3a4afdc08152efabb508e78ea6929d
-
SHA1
b3941022e8c3dd3187c800146b5ce5c8855c0519
-
SHA256
7f9444082f61ad95291fef7ad558b9350068fdde2f69d0dd03cc639e8a04bb17
-
SHA512
78ef1c34827bc98455aa2e08db17d2ae0fe7d0a50ac9a607a9ce7462adddc4a54e6eb89222eaa8fd12ff97a230afd173bd4760689c50c00b3ab23c9d66c39708
-
SSDEEP
768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAIie0w:bCDOw9aMDooc+vAlc
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-21_ef3a4afdc08152efabb508e78ea6929d_cryptolocker.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
2024-05-21_ef3a4afdc08152efabb508e78ea6929d_cryptolocker.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
2024-05-21_ef3a4afdc08152efabb508e78ea6929d_cryptolocker
-
Size
43KB
-
MD5
ef3a4afdc08152efabb508e78ea6929d
-
SHA1
b3941022e8c3dd3187c800146b5ce5c8855c0519
-
SHA256
7f9444082f61ad95291fef7ad558b9350068fdde2f69d0dd03cc639e8a04bb17
-
SHA512
78ef1c34827bc98455aa2e08db17d2ae0fe7d0a50ac9a607a9ce7462adddc4a54e6eb89222eaa8fd12ff97a230afd173bd4760689c50c00b3ab23c9d66c39708
-
SSDEEP
768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAIie0w:bCDOw9aMDooc+vAlc
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-