General
-
Target
2024-05-22_3f31ee8ad8da4b9ad77aca3bdc43e50a_cryptolocker
-
Size
97KB
-
Sample
240522-zbapwaff56
-
MD5
3f31ee8ad8da4b9ad77aca3bdc43e50a
-
SHA1
786dee5b0aab2e731bdd6ed07c78bcc345a36e79
-
SHA256
a4f26a6d972545b039a5db14641024117369b275a42ded73854706d73ba6dd23
-
SHA512
410735b5dc78f2de07bb2759c10158b7fc91bf53a1df4c7512e3aee4ef767458c11f7de828464bf5e833ac3b41d0f84718b6c982683b9165e82a622c5f8658d4
-
SSDEEP
1536:V6QFElP6n+gMQMOtEvwDpjQGYQbN/PKwNgp0A:V6a+pOtEvwDpjtzo
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-22_3f31ee8ad8da4b9ad77aca3bdc43e50a_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-05-22_3f31ee8ad8da4b9ad77aca3bdc43e50a_cryptolocker.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
2024-05-22_3f31ee8ad8da4b9ad77aca3bdc43e50a_cryptolocker
-
Size
97KB
-
MD5
3f31ee8ad8da4b9ad77aca3bdc43e50a
-
SHA1
786dee5b0aab2e731bdd6ed07c78bcc345a36e79
-
SHA256
a4f26a6d972545b039a5db14641024117369b275a42ded73854706d73ba6dd23
-
SHA512
410735b5dc78f2de07bb2759c10158b7fc91bf53a1df4c7512e3aee4ef767458c11f7de828464bf5e833ac3b41d0f84718b6c982683b9165e82a622c5f8658d4
-
SSDEEP
1536:V6QFElP6n+gMQMOtEvwDpjQGYQbN/PKwNgp0A:V6a+pOtEvwDpjtzo
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-