General
-
Target
2024-05-23_770614f32fe6318c25fffb6ab0e18bca_cryptolocker
-
Size
65KB
-
Sample
240523-a4ag5sfb9v
-
MD5
770614f32fe6318c25fffb6ab0e18bca
-
SHA1
c436fcc5b57c45c1a54ba7290faeefc96c78f9b7
-
SHA256
a8e47e51f8d88910a3a5338d170f13f2ce8786e368e3c6ae98ef16818b50d074
-
SHA512
965f8aaee9d38efb2cb6600017224558f6ad35675ff140cb3b1ec7acb7354806d152a082d5979491caced548dc5a4ce3082783d08d34d69a7c3e60af9fc46f77
-
SSDEEP
1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszudnYTjipvF299Np:aq7tdgI2MyzNORQtOflIwoHNV2XBFV77
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-23_770614f32fe6318c25fffb6ab0e18bca_cryptolocker.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
2024-05-23_770614f32fe6318c25fffb6ab0e18bca_cryptolocker.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-05-23_770614f32fe6318c25fffb6ab0e18bca_cryptolocker
-
Size
65KB
-
MD5
770614f32fe6318c25fffb6ab0e18bca
-
SHA1
c436fcc5b57c45c1a54ba7290faeefc96c78f9b7
-
SHA256
a8e47e51f8d88910a3a5338d170f13f2ce8786e368e3c6ae98ef16818b50d074
-
SHA512
965f8aaee9d38efb2cb6600017224558f6ad35675ff140cb3b1ec7acb7354806d152a082d5979491caced548dc5a4ce3082783d08d34d69a7c3e60af9fc46f77
-
SSDEEP
1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszudnYTjipvF299Np:aq7tdgI2MyzNORQtOflIwoHNV2XBFV77
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-