General
-
Target
2024-05-23_a7893ed768a7f19f25a7170e4c65ba00_cryptolocker
-
Size
48KB
-
Sample
240523-wwm9xsbe5y
-
MD5
a7893ed768a7f19f25a7170e4c65ba00
-
SHA1
f278860408c42d17a1f05511c9beaaea48928a46
-
SHA256
18add9d382cddb90ad8f54d3961c7a447c1665d871044140439fa6feb62098dc
-
SHA512
919cdce3d179b9e4801a176779e2e9ab30ca23c0d9de63d00c5383333c707fba604163c9c7b951073705c7484675b43912eca7f70e1481871305af00daf03eb4
-
SSDEEP
768:79inqyNR/QtOOtEvwDpjBKccJVODvy3SpUl0n:79mqyNhQMOtEvwDpjBzckqShn
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-23_a7893ed768a7f19f25a7170e4c65ba00_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-05-23_a7893ed768a7f19f25a7170e4c65ba00_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-05-23_a7893ed768a7f19f25a7170e4c65ba00_cryptolocker
-
Size
48KB
-
MD5
a7893ed768a7f19f25a7170e4c65ba00
-
SHA1
f278860408c42d17a1f05511c9beaaea48928a46
-
SHA256
18add9d382cddb90ad8f54d3961c7a447c1665d871044140439fa6feb62098dc
-
SHA512
919cdce3d179b9e4801a176779e2e9ab30ca23c0d9de63d00c5383333c707fba604163c9c7b951073705c7484675b43912eca7f70e1481871305af00daf03eb4
-
SSDEEP
768:79inqyNR/QtOOtEvwDpjBKccJVODvy3SpUl0n:79mqyNhQMOtEvwDpjBzckqShn
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-