General
-
Target
2024-05-22_9705d125a9ae18719c9cb92ecfcc25c6_cryptolocker
-
Size
42KB
-
Sample
240522-3ekk2adb25
-
MD5
9705d125a9ae18719c9cb92ecfcc25c6
-
SHA1
cc076305f3054510280e80205bc092f544a20c79
-
SHA256
d41ebbc003acef248cde391a2939b04728487422ebe2a2a2a1a685bd60e7e854
-
SHA512
42d3467338d63ca61aa1ba1afd7f22d98e7c3f310f27cc1d79d5daac9d85d4b439f3ceb106b94e7b0c440d41c0187adefd6dd3b4e1812946956c0aae29ba4e44
-
SSDEEP
768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjLeJAsKuDb7xLp:ZzFbxmLPWQMOtEvwDpjLeJAsKcb7j
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-22_9705d125a9ae18719c9cb92ecfcc25c6_cryptolocker.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
2024-05-22_9705d125a9ae18719c9cb92ecfcc25c6_cryptolocker.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
2024-05-22_9705d125a9ae18719c9cb92ecfcc25c6_cryptolocker
-
Size
42KB
-
MD5
9705d125a9ae18719c9cb92ecfcc25c6
-
SHA1
cc076305f3054510280e80205bc092f544a20c79
-
SHA256
d41ebbc003acef248cde391a2939b04728487422ebe2a2a2a1a685bd60e7e854
-
SHA512
42d3467338d63ca61aa1ba1afd7f22d98e7c3f310f27cc1d79d5daac9d85d4b439f3ceb106b94e7b0c440d41c0187adefd6dd3b4e1812946956c0aae29ba4e44
-
SSDEEP
768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjLeJAsKuDb7xLp:ZzFbxmLPWQMOtEvwDpjLeJAsKcb7j
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-