General
-
Target
2024-05-22_4eec15728190beabf45d735a636104c0_cryptolocker
-
Size
43KB
-
Sample
240522-b4x4wagc88
-
MD5
4eec15728190beabf45d735a636104c0
-
SHA1
d214b86d139c052681d689aef16c27f8c089ab94
-
SHA256
168bbe9a6e9d5ae414e1e624588d9b8dd187f621719cc04729f457a219fdc571
-
SHA512
7d33d394d41a8e049df3cf54e2563b8b0ea0e6f98f7a3f97b8ccb3ce59d680721d7133c6e314b547854003b7a4c650898628538fa8f723d681a24d1483321c5c
-
SSDEEP
768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4REL+cc66TcjF:vj+jsMQMOtEvwDpj5HW5scx
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-22_4eec15728190beabf45d735a636104c0_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-05-22_4eec15728190beabf45d735a636104c0_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-05-22_4eec15728190beabf45d735a636104c0_cryptolocker
-
Size
43KB
-
MD5
4eec15728190beabf45d735a636104c0
-
SHA1
d214b86d139c052681d689aef16c27f8c089ab94
-
SHA256
168bbe9a6e9d5ae414e1e624588d9b8dd187f621719cc04729f457a219fdc571
-
SHA512
7d33d394d41a8e049df3cf54e2563b8b0ea0e6f98f7a3f97b8ccb3ce59d680721d7133c6e314b547854003b7a4c650898628538fa8f723d681a24d1483321c5c
-
SSDEEP
768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4REL+cc66TcjF:vj+jsMQMOtEvwDpj5HW5scx
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-