General
-
Target
2024-05-23_5363d13f6051ad3018fb1bba2e771a96_cryptolocker
-
Size
85KB
-
Sample
240523-aybs1seh9y
-
MD5
5363d13f6051ad3018fb1bba2e771a96
-
SHA1
7bd0283e201a5fa8bfd5c6fbecc60c2d1f21ce3b
-
SHA256
5bd569140304be156d21c71673176568af508399091279d7392731bde0beea49
-
SHA512
cb15d56d20f3c5e71d598a88519f04fabff6fa2479ac6fc94f061e226b9c69bf60286d7f4eb7157adceab50a8e95dc788fa49e0a5d2d2f975417ab453a90253f
-
SSDEEP
1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMrC+a:TCjsIOtEvwDpj5HE/OUHnSMY
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-23_5363d13f6051ad3018fb1bba2e771a96_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-05-23_5363d13f6051ad3018fb1bba2e771a96_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-05-23_5363d13f6051ad3018fb1bba2e771a96_cryptolocker
-
Size
85KB
-
MD5
5363d13f6051ad3018fb1bba2e771a96
-
SHA1
7bd0283e201a5fa8bfd5c6fbecc60c2d1f21ce3b
-
SHA256
5bd569140304be156d21c71673176568af508399091279d7392731bde0beea49
-
SHA512
cb15d56d20f3c5e71d598a88519f04fabff6fa2479ac6fc94f061e226b9c69bf60286d7f4eb7157adceab50a8e95dc788fa49e0a5d2d2f975417ab453a90253f
-
SSDEEP
1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMrC+a:TCjsIOtEvwDpj5HE/OUHnSMY
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-