General
-
Target
2024-05-23_1dc15c2bc696e4285557bd112dc78cd8_cryptolocker
-
Size
42KB
-
Sample
240523-cvtwjaaf76
-
MD5
1dc15c2bc696e4285557bd112dc78cd8
-
SHA1
c31be27d08e0e566cfff7b3ac4755a556560a30b
-
SHA256
ae22fbe81e0a4ba8e5c0d5ae5d1cfdf65b929aa9cef81fa7f5d2d7af42df0062
-
SHA512
af1f93c0cf8d4daf86294ffc73accd159ffb86730cd9f4f912b68af05bc0dbbab78fa4cdaebf7b9ec9b1e28376da5e5e68f7e84f0c0c1f19c4f95bd3fd9c8f46
-
SSDEEP
768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjLeJAsKuDb7xLr:ZzFbxmLPWQMOtEvwDpjLeJAsKcb7x
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-23_1dc15c2bc696e4285557bd112dc78cd8_cryptolocker.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
2024-05-23_1dc15c2bc696e4285557bd112dc78cd8_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-05-23_1dc15c2bc696e4285557bd112dc78cd8_cryptolocker
-
Size
42KB
-
MD5
1dc15c2bc696e4285557bd112dc78cd8
-
SHA1
c31be27d08e0e566cfff7b3ac4755a556560a30b
-
SHA256
ae22fbe81e0a4ba8e5c0d5ae5d1cfdf65b929aa9cef81fa7f5d2d7af42df0062
-
SHA512
af1f93c0cf8d4daf86294ffc73accd159ffb86730cd9f4f912b68af05bc0dbbab78fa4cdaebf7b9ec9b1e28376da5e5e68f7e84f0c0c1f19c4f95bd3fd9c8f46
-
SSDEEP
768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjLeJAsKuDb7xLr:ZzFbxmLPWQMOtEvwDpjLeJAsKcb7x
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-