General
-
Target
2024-05-22_70ea8fb49c2a59e6d4ff42e1c15f1b31_cryptolocker
-
Size
31KB
-
Sample
240522-c436kahf78
-
MD5
70ea8fb49c2a59e6d4ff42e1c15f1b31
-
SHA1
129fb3bcbe2bd87cd2bf2e66bf2cdd87d915377b
-
SHA256
e10dae50e530df6437f3011136cbb8082c00238566bad30f8b0124780289f7ac
-
SHA512
b86cc23fd639cd727dd87e1a30c835a37228bff6dbe49c313a7d4220076cbe9f995ca7fea1b735573e2d4598f92baebff8df5e984e7008bd5542b52725916e6f
-
SSDEEP
384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTjA:bG74zYcgT/Ekd0ryfjfA
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-22_70ea8fb49c2a59e6d4ff42e1c15f1b31_cryptolocker.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
2024-05-22_70ea8fb49c2a59e6d4ff42e1c15f1b31_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-05-22_70ea8fb49c2a59e6d4ff42e1c15f1b31_cryptolocker
-
Size
31KB
-
MD5
70ea8fb49c2a59e6d4ff42e1c15f1b31
-
SHA1
129fb3bcbe2bd87cd2bf2e66bf2cdd87d915377b
-
SHA256
e10dae50e530df6437f3011136cbb8082c00238566bad30f8b0124780289f7ac
-
SHA512
b86cc23fd639cd727dd87e1a30c835a37228bff6dbe49c313a7d4220076cbe9f995ca7fea1b735573e2d4598f92baebff8df5e984e7008bd5542b52725916e6f
-
SSDEEP
384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTjA:bG74zYcgT/Ekd0ryfjfA
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-