General
-
Target
2024-05-22_710f5fe0f2c2e9d479debb2a9affcbe4_cryptolocker
-
Size
33KB
-
Sample
240522-avxw3seg75
-
MD5
710f5fe0f2c2e9d479debb2a9affcbe4
-
SHA1
f03b49ac33edf55a74898ae1d5c29fb36ed13994
-
SHA256
27479ae12bd4867d8a4e6d74431af9c4893fbdb04b6b938d608ac1714594b905
-
SHA512
9f61d229cd8113b4129957fc234aaae028ea44ff409369008a7f1d5fadb70bb9db3c22302858289b51d1399720b8b3cd1ccbf758b3814619ec7e33167c629364
-
SSDEEP
384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGXvi8:bG74zYcgT/Ekd0ryfjki8
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-22_710f5fe0f2c2e9d479debb2a9affcbe4_cryptolocker.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
2024-05-22_710f5fe0f2c2e9d479debb2a9affcbe4_cryptolocker.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
2024-05-22_710f5fe0f2c2e9d479debb2a9affcbe4_cryptolocker
-
Size
33KB
-
MD5
710f5fe0f2c2e9d479debb2a9affcbe4
-
SHA1
f03b49ac33edf55a74898ae1d5c29fb36ed13994
-
SHA256
27479ae12bd4867d8a4e6d74431af9c4893fbdb04b6b938d608ac1714594b905
-
SHA512
9f61d229cd8113b4129957fc234aaae028ea44ff409369008a7f1d5fadb70bb9db3c22302858289b51d1399720b8b3cd1ccbf758b3814619ec7e33167c629364
-
SSDEEP
384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGXvi8:bG74zYcgT/Ekd0ryfjki8
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-