General
-
Target
2024-05-22_2aa0083f422bac627f7b57f0bf551dc3_cryptolocker
-
Size
36KB
-
Sample
240522-cxawfahd58
-
MD5
2aa0083f422bac627f7b57f0bf551dc3
-
SHA1
44b75b6c6ca036644bf2211107d37396dee8a56e
-
SHA256
0fc74701e91322421409f6e700b515963c0c58ca2eba5ac9277931f01f8dd4c1
-
SHA512
bbe6649843bb37acad76fc3d86f6c77dbd1523bdab612aead9598194a3f509db6d6d22b684958ba616aae8b301d26658009300009b5629ec7f133bfdb609d53c
-
SSDEEP
384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4l8tFFxE2B0qZvvb:btB9g/WItCSsAGjX7r3BTZvvb
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-22_2aa0083f422bac627f7b57f0bf551dc3_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-05-22_2aa0083f422bac627f7b57f0bf551dc3_cryptolocker.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-05-22_2aa0083f422bac627f7b57f0bf551dc3_cryptolocker
-
Size
36KB
-
MD5
2aa0083f422bac627f7b57f0bf551dc3
-
SHA1
44b75b6c6ca036644bf2211107d37396dee8a56e
-
SHA256
0fc74701e91322421409f6e700b515963c0c58ca2eba5ac9277931f01f8dd4c1
-
SHA512
bbe6649843bb37acad76fc3d86f6c77dbd1523bdab612aead9598194a3f509db6d6d22b684958ba616aae8b301d26658009300009b5629ec7f133bfdb609d53c
-
SSDEEP
384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4l8tFFxE2B0qZvvb:btB9g/WItCSsAGjX7r3BTZvvb
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-