General
-
Target
2024-05-22_7c78d0d007f6904d2f8cd2de4b0f95d1_cryptolocker
-
Size
31KB
-
Sample
240522-caaxxsgg5y
-
MD5
7c78d0d007f6904d2f8cd2de4b0f95d1
-
SHA1
b48e47889414d702d436dec83617219da72aacda
-
SHA256
76403bde639186da22cc8090621a243d883e0d5b92589032d143f49e1a56c20f
-
SHA512
698d06411ec6f25d07e0b672104ce38c2bdb5d18f1ac2ecf62f1e2110aa5baf3dbd78e21ca121fc461d6a3fb5e245bd035d3d5f723c60548de444adcdd176a27
-
SSDEEP
384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzo6cJ3v7H:bAvJCYOOvbRPDEgXRcJT
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-22_7c78d0d007f6904d2f8cd2de4b0f95d1_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-05-22_7c78d0d007f6904d2f8cd2de4b0f95d1_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-05-22_7c78d0d007f6904d2f8cd2de4b0f95d1_cryptolocker
-
Size
31KB
-
MD5
7c78d0d007f6904d2f8cd2de4b0f95d1
-
SHA1
b48e47889414d702d436dec83617219da72aacda
-
SHA256
76403bde639186da22cc8090621a243d883e0d5b92589032d143f49e1a56c20f
-
SHA512
698d06411ec6f25d07e0b672104ce38c2bdb5d18f1ac2ecf62f1e2110aa5baf3dbd78e21ca121fc461d6a3fb5e245bd035d3d5f723c60548de444adcdd176a27
-
SSDEEP
384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzo6cJ3v7H:bAvJCYOOvbRPDEgXRcJT
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-