General
-
Target
2024-05-21_f25127a141e0295e9be57a728d453ed0_cryptolocker
-
Size
37KB
-
Sample
240521-tjvr5abc49
-
MD5
f25127a141e0295e9be57a728d453ed0
-
SHA1
8a1ea4a652a54c3d17fee1be34fe25d1d5377fc4
-
SHA256
5c97497acc6bb9181a68186626ad5cd5b5d6e938d24f71eea6b608b852fcdc7e
-
SHA512
06589e30f57f1cfed7c0c7d916af20ac5f3acf018dbcd490785c08263e654be2f5e75dc2a2395f708ed2972943e5d24ae9e8bad227219a767a08b0b50bd7e753
-
SSDEEP
768:fTz7y3lhsT+hs1SQtOOtEvwDpjfAu9+4k:fT+hsMQMOtEvwDpjoIHk
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-21_f25127a141e0295e9be57a728d453ed0_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-05-21_f25127a141e0295e9be57a728d453ed0_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-05-21_f25127a141e0295e9be57a728d453ed0_cryptolocker
-
Size
37KB
-
MD5
f25127a141e0295e9be57a728d453ed0
-
SHA1
8a1ea4a652a54c3d17fee1be34fe25d1d5377fc4
-
SHA256
5c97497acc6bb9181a68186626ad5cd5b5d6e938d24f71eea6b608b852fcdc7e
-
SHA512
06589e30f57f1cfed7c0c7d916af20ac5f3acf018dbcd490785c08263e654be2f5e75dc2a2395f708ed2972943e5d24ae9e8bad227219a767a08b0b50bd7e753
-
SSDEEP
768:fTz7y3lhsT+hs1SQtOOtEvwDpjfAu9+4k:fT+hsMQMOtEvwDpjoIHk
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-