General
-
Target
2024-05-23_dd4621e4ccae9b70857324ffa1888744_cryptolocker
-
Size
32KB
-
Sample
240523-w36pvabg8z
-
MD5
dd4621e4ccae9b70857324ffa1888744
-
SHA1
d7dd48a90d28d54e9fa24dea5b028c65ff8b3634
-
SHA256
4f0f7d6a1e70f5a26b6f8136d57fa63c5dbc2e01c0bb4483d6eaf89e71efcddc
-
SHA512
64de69d3f15bf57f0ee13f55b0c36318fac927c430d3cfe293b5f3ec0980afa7e34dbd538afa8d7e1b86f3491cd56b553b381668f1a81289f12a03d653a92ffe
-
SSDEEP
384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzo6cJ3v7O:bAvJCYOOvbRPDEgXRcJC
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-23_dd4621e4ccae9b70857324ffa1888744_cryptolocker.exe
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
2024-05-23_dd4621e4ccae9b70857324ffa1888744_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-05-23_dd4621e4ccae9b70857324ffa1888744_cryptolocker
-
Size
32KB
-
MD5
dd4621e4ccae9b70857324ffa1888744
-
SHA1
d7dd48a90d28d54e9fa24dea5b028c65ff8b3634
-
SHA256
4f0f7d6a1e70f5a26b6f8136d57fa63c5dbc2e01c0bb4483d6eaf89e71efcddc
-
SHA512
64de69d3f15bf57f0ee13f55b0c36318fac927c430d3cfe293b5f3ec0980afa7e34dbd538afa8d7e1b86f3491cd56b553b381668f1a81289f12a03d653a92ffe
-
SSDEEP
384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzo6cJ3v7O:bAvJCYOOvbRPDEgXRcJC
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-