General
-
Target
1ebee3af5bc15fd78fbd6a00b62993f5db5d2cc1482a2dd3a145860933f1f421
-
Size
49KB
-
Sample
240521-x7a96sgb2x
-
MD5
68ee11b64a3f832e83f04d644cd77b81
-
SHA1
456139bd374d48e6c34bbfb36bd95aba71798fc0
-
SHA256
1ebee3af5bc15fd78fbd6a00b62993f5db5d2cc1482a2dd3a145860933f1f421
-
SHA512
4940722b9755e4cd1ac49b6f6fa0647b8867af315298bd31dae41c2f88d4452fb052fb63196b55af39d7d5773a582fe52a1ed9b84eabf529eaa469eea02f13c0
-
SSDEEP
768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaaEqbIu55id3AMWZRQZ:X6QFElP6n+gJQMOtEvwDpjB0GIWiWLa
Static task
static1
Behavioral task
behavioral1
Sample
1ebee3af5bc15fd78fbd6a00b62993f5db5d2cc1482a2dd3a145860933f1f421.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
1ebee3af5bc15fd78fbd6a00b62993f5db5d2cc1482a2dd3a145860933f1f421.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
1ebee3af5bc15fd78fbd6a00b62993f5db5d2cc1482a2dd3a145860933f1f421
-
Size
49KB
-
MD5
68ee11b64a3f832e83f04d644cd77b81
-
SHA1
456139bd374d48e6c34bbfb36bd95aba71798fc0
-
SHA256
1ebee3af5bc15fd78fbd6a00b62993f5db5d2cc1482a2dd3a145860933f1f421
-
SHA512
4940722b9755e4cd1ac49b6f6fa0647b8867af315298bd31dae41c2f88d4452fb052fb63196b55af39d7d5773a582fe52a1ed9b84eabf529eaa469eea02f13c0
-
SSDEEP
768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaaEqbIu55id3AMWZRQZ:X6QFElP6n+gJQMOtEvwDpjB0GIWiWLa
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-