General
-
Target
2024-05-23_30b87cee1220b8afa29d21779c1f88a9_cryptolocker
-
Size
32KB
-
Sample
240523-cw5dnaag45
-
MD5
30b87cee1220b8afa29d21779c1f88a9
-
SHA1
8497317ee689b100d960e7f200c999dc5796fede
-
SHA256
8337d35b8e17501bf27dbf8b2561a9b72cfd59ff2bcf42c12342b68a46c277ea
-
SHA512
52e8390ebad241ebdf5eb7a5dbaa0a0d2c99e2ab220c8e209a485509964e97042a2a6822f52aa9f2b4651be3cf8079368c9ec55214c7a967d0e18c2c022a59f9
-
SSDEEP
384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzo6cJ3v7T:bAvJCYOOvbRPDEgXRcJn
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-23_30b87cee1220b8afa29d21779c1f88a9_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-05-23_30b87cee1220b8afa29d21779c1f88a9_cryptolocker.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
2024-05-23_30b87cee1220b8afa29d21779c1f88a9_cryptolocker
-
Size
32KB
-
MD5
30b87cee1220b8afa29d21779c1f88a9
-
SHA1
8497317ee689b100d960e7f200c999dc5796fede
-
SHA256
8337d35b8e17501bf27dbf8b2561a9b72cfd59ff2bcf42c12342b68a46c277ea
-
SHA512
52e8390ebad241ebdf5eb7a5dbaa0a0d2c99e2ab220c8e209a485509964e97042a2a6822f52aa9f2b4651be3cf8079368c9ec55214c7a967d0e18c2c022a59f9
-
SSDEEP
384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzo6cJ3v7T:bAvJCYOOvbRPDEgXRcJn
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-