General
-
Target
2024-05-22_a78a44e92ab855611dc9989858a81708_cryptolocker
-
Size
32KB
-
Sample
240522-3enyfsda7v
-
MD5
a78a44e92ab855611dc9989858a81708
-
SHA1
d959ea9c7bcbc700c5ece5d108ae53286d4261fc
-
SHA256
991a3461c136534da63fd51bc66e06a552984295c39c799d08e3737bf655689f
-
SHA512
2131b6e1af2bcd69bd16153dcccb4a884abba9dfd403fb359be3dac16e199688a1e300d29b50ec921f2cbdef595f79087788e8ac4147d347bef8e69a1825f62e
-
SSDEEP
384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGXvxE:bG74zYcgT/Ekd0ryfjke
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-22_a78a44e92ab855611dc9989858a81708_cryptolocker.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
2024-05-22_a78a44e92ab855611dc9989858a81708_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-05-22_a78a44e92ab855611dc9989858a81708_cryptolocker
-
Size
32KB
-
MD5
a78a44e92ab855611dc9989858a81708
-
SHA1
d959ea9c7bcbc700c5ece5d108ae53286d4261fc
-
SHA256
991a3461c136534da63fd51bc66e06a552984295c39c799d08e3737bf655689f
-
SHA512
2131b6e1af2bcd69bd16153dcccb4a884abba9dfd403fb359be3dac16e199688a1e300d29b50ec921f2cbdef595f79087788e8ac4147d347bef8e69a1825f62e
-
SSDEEP
384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGXvxE:bG74zYcgT/Ekd0ryfjke
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-