General
-
Target
2024-05-21_5dd24a8dd1cd321eb1cafc8682a2abe2_cryptolocker
-
Size
34KB
-
Sample
240521-znbspsaa74
-
MD5
5dd24a8dd1cd321eb1cafc8682a2abe2
-
SHA1
141347d7730e32463fce1c4b2c7ab99298ade4b9
-
SHA256
e480485a43619c439234b5d1c1e1176d11869444601a6f07aa2ec77eda353e73
-
SHA512
07553cc4e251c392d5545ea783c3ded2f0327cfbde372023d60543f4b374ff37b05bf4b178e70f8a901a5fbfe064009dfce10f36bf24950c468c21ad738626e5
-
SSDEEP
384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzo6ckJp0qAgmEzXKxA+T9xlb:bAvJCYOOvbRPDEgXRc+BAILihb
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-21_5dd24a8dd1cd321eb1cafc8682a2abe2_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-05-21_5dd24a8dd1cd321eb1cafc8682a2abe2_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-05-21_5dd24a8dd1cd321eb1cafc8682a2abe2_cryptolocker
-
Size
34KB
-
MD5
5dd24a8dd1cd321eb1cafc8682a2abe2
-
SHA1
141347d7730e32463fce1c4b2c7ab99298ade4b9
-
SHA256
e480485a43619c439234b5d1c1e1176d11869444601a6f07aa2ec77eda353e73
-
SHA512
07553cc4e251c392d5545ea783c3ded2f0327cfbde372023d60543f4b374ff37b05bf4b178e70f8a901a5fbfe064009dfce10f36bf24950c468c21ad738626e5
-
SSDEEP
384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzo6ckJp0qAgmEzXKxA+T9xlb:bAvJCYOOvbRPDEgXRc+BAILihb
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-