General
-
Target
2024-05-23_9ff8d512621c8d23cca64265b6ce5e73_cryptolocker
-
Size
32KB
-
Sample
240523-c3p8baba58
-
MD5
9ff8d512621c8d23cca64265b6ce5e73
-
SHA1
b8c721d06bc9897b19194c91659c7678f2d716f8
-
SHA256
485b340bb69aff021748181c192de8740aa6e51131e8f2c7ad93de4969ed473a
-
SHA512
8b33ebcc05f7accd023929b44a1bf6bfbc10d57b55bfdd24219ede0c5e540a4f4479f68f1877fa91b40285e8d8461f7941cf06894e2f5bb069e7ece698b14a56
-
SSDEEP
384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzo6cJ3v7+:bAvJCYOOvbRPDEgXRcJS
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-23_9ff8d512621c8d23cca64265b6ce5e73_cryptolocker.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
2024-05-23_9ff8d512621c8d23cca64265b6ce5e73_cryptolocker.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
2024-05-23_9ff8d512621c8d23cca64265b6ce5e73_cryptolocker
-
Size
32KB
-
MD5
9ff8d512621c8d23cca64265b6ce5e73
-
SHA1
b8c721d06bc9897b19194c91659c7678f2d716f8
-
SHA256
485b340bb69aff021748181c192de8740aa6e51131e8f2c7ad93de4969ed473a
-
SHA512
8b33ebcc05f7accd023929b44a1bf6bfbc10d57b55bfdd24219ede0c5e540a4f4479f68f1877fa91b40285e8d8461f7941cf06894e2f5bb069e7ece698b14a56
-
SSDEEP
384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzo6cJ3v7+:bAvJCYOOvbRPDEgXRcJS
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-