General
-
Target
2024-05-23_4605fd0fbf5372fbdad8b5aacb641bf2_cryptolocker
-
Size
36KB
-
Sample
240523-wnbwxsbb9z
-
MD5
4605fd0fbf5372fbdad8b5aacb641bf2
-
SHA1
dbe083fdc951dc3258ed177e45caab43904d7917
-
SHA256
294ce57d4debcf1e81b99ad8ebe3d4b943960efe535b08c2910dda751b704d9a
-
SHA512
53a21c5e27e0f4fdce9fa9dd3ad7453e23f933ee358df938a1e50b34e4761ac18009c535fb7fc794ebc77a8922138d69d2216d40c7e7f59a984dc1d674029f12
-
SSDEEP
384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4l8tFFxE2B0qvoLUZ61VCV:btB9g/WItCSsAGjX7r3BTmUQ1V8
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-23_4605fd0fbf5372fbdad8b5aacb641bf2_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-05-23_4605fd0fbf5372fbdad8b5aacb641bf2_cryptolocker.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
2024-05-23_4605fd0fbf5372fbdad8b5aacb641bf2_cryptolocker
-
Size
36KB
-
MD5
4605fd0fbf5372fbdad8b5aacb641bf2
-
SHA1
dbe083fdc951dc3258ed177e45caab43904d7917
-
SHA256
294ce57d4debcf1e81b99ad8ebe3d4b943960efe535b08c2910dda751b704d9a
-
SHA512
53a21c5e27e0f4fdce9fa9dd3ad7453e23f933ee358df938a1e50b34e4761ac18009c535fb7fc794ebc77a8922138d69d2216d40c7e7f59a984dc1d674029f12
-
SSDEEP
384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4l8tFFxE2B0qvoLUZ61VCV:btB9g/WItCSsAGjX7r3BTmUQ1V8
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-