General
-
Target
2024-05-23_a1e28c1bd67722209d1dfc46b9e20515_cryptolocker
-
Size
36KB
-
Sample
240523-c4bfjsba78
-
MD5
a1e28c1bd67722209d1dfc46b9e20515
-
SHA1
c4a34b47bb58c58959eeaa56f5940f6752c7b809
-
SHA256
0f593b6e45e2379b936887fcc52fc727811728d5022ae4bcd70d108e675387ea
-
SHA512
30c0b6ef369b30e62e635c0d3ffeb0655ae4b91b8619d769a488d257175fc0c4c7c13fc281ace39bf1f5019aae6243f36c472967dfd1aadf30900e1bcc21b9b9
-
SSDEEP
384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4l8tFFxE2B0qvoLUZ61VQ:btB9g/WItCSsAGjX7r3BTmUQ1VQ
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-23_a1e28c1bd67722209d1dfc46b9e20515_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-05-23_a1e28c1bd67722209d1dfc46b9e20515_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-05-23_a1e28c1bd67722209d1dfc46b9e20515_cryptolocker
-
Size
36KB
-
MD5
a1e28c1bd67722209d1dfc46b9e20515
-
SHA1
c4a34b47bb58c58959eeaa56f5940f6752c7b809
-
SHA256
0f593b6e45e2379b936887fcc52fc727811728d5022ae4bcd70d108e675387ea
-
SHA512
30c0b6ef369b30e62e635c0d3ffeb0655ae4b91b8619d769a488d257175fc0c4c7c13fc281ace39bf1f5019aae6243f36c472967dfd1aadf30900e1bcc21b9b9
-
SSDEEP
384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4l8tFFxE2B0qvoLUZ61VQ:btB9g/WItCSsAGjX7r3BTmUQ1VQ
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-