General
-
Target
2024-05-21_5a19a480af7070879d3d32b4338d0b0b_cryptolocker
-
Size
35KB
-
Sample
240521-zm8faaaa69
-
MD5
5a19a480af7070879d3d32b4338d0b0b
-
SHA1
5defe9381891e3c99ec108e7727d127a9ef4c492
-
SHA256
9f3afe05f4d11843a4f198acb4c18b977e3da845c263ae9534dc977075493227
-
SHA512
1bd6d12f3f672098be01c5916b40b9790ba3f647cc31f83e7fd4e38d7f0edb62cef21e218f27d4dd18ab5b335225774c6374eeded40f68832ae27cb8e3bc1382
-
SSDEEP
768:bxNQIE0eBhkL2Fo1CCwgfjOg9Arbkzos5Pp701:bxNrC7kYo1Fxf2rY1g
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-21_5a19a480af7070879d3d32b4338d0b0b_cryptolocker.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
2024-05-21_5a19a480af7070879d3d32b4338d0b0b_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-05-21_5a19a480af7070879d3d32b4338d0b0b_cryptolocker
-
Size
35KB
-
MD5
5a19a480af7070879d3d32b4338d0b0b
-
SHA1
5defe9381891e3c99ec108e7727d127a9ef4c492
-
SHA256
9f3afe05f4d11843a4f198acb4c18b977e3da845c263ae9534dc977075493227
-
SHA512
1bd6d12f3f672098be01c5916b40b9790ba3f647cc31f83e7fd4e38d7f0edb62cef21e218f27d4dd18ab5b335225774c6374eeded40f68832ae27cb8e3bc1382
-
SSDEEP
768:bxNQIE0eBhkL2Fo1CCwgfjOg9Arbkzos5Pp701:bxNrC7kYo1Fxf2rY1g
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-