General
-
Target
2024-05-22_83ab1b105c206fd5d37c54c58e90bd99_cryptolocker
-
Size
38KB
-
Sample
240522-c5sffshh4z
-
MD5
83ab1b105c206fd5d37c54c58e90bd99
-
SHA1
c71bfd9fe0c429c947718d5b177a9dcbf520e943
-
SHA256
059945b0027aea84d1fcb80dae2f6605fe3bb44a089d06ecf1c2833b11f54661
-
SHA512
c08664ee3ec3631c737680b69d1d3ae830720c9462496d65f4d2c5349e29b1b656bc8d23cf26e02ec11b3de6c665eb636d92a9363bdcf97ee9ca2db201e3ab9b
-
SSDEEP
384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNiJXxXunRSyHmYvV8o:btB9g/WItCSsAGjX7e9N0hunRvGIV8o
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-22_83ab1b105c206fd5d37c54c58e90bd99_cryptolocker.exe
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
2024-05-22_83ab1b105c206fd5d37c54c58e90bd99_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-05-22_83ab1b105c206fd5d37c54c58e90bd99_cryptolocker
-
Size
38KB
-
MD5
83ab1b105c206fd5d37c54c58e90bd99
-
SHA1
c71bfd9fe0c429c947718d5b177a9dcbf520e943
-
SHA256
059945b0027aea84d1fcb80dae2f6605fe3bb44a089d06ecf1c2833b11f54661
-
SHA512
c08664ee3ec3631c737680b69d1d3ae830720c9462496d65f4d2c5349e29b1b656bc8d23cf26e02ec11b3de6c665eb636d92a9363bdcf97ee9ca2db201e3ab9b
-
SSDEEP
384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNiJXxXunRSyHmYvV8o:btB9g/WItCSsAGjX7e9N0hunRvGIV8o
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-