General
-
Target
2024-05-23_d6f22aaa32809e48d3052cad0c2a7951_cryptolocker
-
Size
71KB
-
Sample
240523-wys8ysbf4v
-
MD5
d6f22aaa32809e48d3052cad0c2a7951
-
SHA1
92d3a70134d39e746838b63a042389cfc9f8ea60
-
SHA256
a6e5e588a522288590704cd2ebb6cfc652a6dcfdc7711e6137c0a497adb4e816
-
SHA512
da7fa646fbc938f6a2d81802d655f3af08fe872ee36f9e6441418ebdd0f08c67a4049be549f529fdab9f2de04e8bd8b7fb7f8e8703cd4aacb01f1e3d99605130
-
SSDEEP
768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4ZPsED3VK2+ZtyOjgO4r9vFAg2rq2g1B/R+:vj+jsMQMOtEvwDpj5HZYTjipvF24c5
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-23_d6f22aaa32809e48d3052cad0c2a7951_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-05-23_d6f22aaa32809e48d3052cad0c2a7951_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-05-23_d6f22aaa32809e48d3052cad0c2a7951_cryptolocker
-
Size
71KB
-
MD5
d6f22aaa32809e48d3052cad0c2a7951
-
SHA1
92d3a70134d39e746838b63a042389cfc9f8ea60
-
SHA256
a6e5e588a522288590704cd2ebb6cfc652a6dcfdc7711e6137c0a497adb4e816
-
SHA512
da7fa646fbc938f6a2d81802d655f3af08fe872ee36f9e6441418ebdd0f08c67a4049be549f529fdab9f2de04e8bd8b7fb7f8e8703cd4aacb01f1e3d99605130
-
SSDEEP
768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4ZPsED3VK2+ZtyOjgO4r9vFAg2rq2g1B/R+:vj+jsMQMOtEvwDpj5HZYTjipvF24c5
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-