General
-
Target
2024-05-23_0124a7633391aa51e2df3d1c9ca2541c_cryptolocker
-
Size
49KB
-
Sample
240523-ctnywsaf37
-
MD5
0124a7633391aa51e2df3d1c9ca2541c
-
SHA1
4e634bc67688f9c4506e7c3130a84bb85dd90f88
-
SHA256
8bc44be815ae9c9b5ddcdf4c69db49377241aa29b860e149e52e4d19447774b3
-
SHA512
4c6e0f5e4be6f54ec95781d5d53da7fc44257c1825d10e5c7bbf5bc92e22e562bba997bbfdd0b5fbc8b7500f3f76b9585fc608b91efc0de3ca763dc6d1ebdc15
-
SSDEEP
768:X6LsoEEeegiZPvEhHSG+gp/BtOOtEvwDpjBVaD3E09vdXf5:X6QFElP6n+gJBMOtEvwDpjBtEdXf5
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-23_0124a7633391aa51e2df3d1c9ca2541c_cryptolocker.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
2024-05-23_0124a7633391aa51e2df3d1c9ca2541c_cryptolocker.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
2024-05-23_0124a7633391aa51e2df3d1c9ca2541c_cryptolocker
-
Size
49KB
-
MD5
0124a7633391aa51e2df3d1c9ca2541c
-
SHA1
4e634bc67688f9c4506e7c3130a84bb85dd90f88
-
SHA256
8bc44be815ae9c9b5ddcdf4c69db49377241aa29b860e149e52e4d19447774b3
-
SHA512
4c6e0f5e4be6f54ec95781d5d53da7fc44257c1825d10e5c7bbf5bc92e22e562bba997bbfdd0b5fbc8b7500f3f76b9585fc608b91efc0de3ca763dc6d1ebdc15
-
SSDEEP
768:X6LsoEEeegiZPvEhHSG+gp/BtOOtEvwDpjBVaD3E09vdXf5:X6QFElP6n+gJBMOtEvwDpjBtEdXf5
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-