General
-
Target
2024-05-24_ccffdc1c6a141ad3b4215ecbda7b1a31_cryptolocker
-
Size
43KB
-
Sample
240524-b4mcdagg4x
-
MD5
ccffdc1c6a141ad3b4215ecbda7b1a31
-
SHA1
17c0610c8668934450171747890eb3ea7d539774
-
SHA256
9408d69937bb68428acbee3ff4bf4fb32edf3c0afa042fe0a61fac7da10f7976
-
SHA512
c8c93933e57222ecabde45d69f8f796d314c52cd43e4bd84b3b5162664aba3dcf4cd55c36c5508c82524f1915723f8b2fa21f4c55dd4d46dbcbe8c55d725d108
-
SSDEEP
768:bAvJCYOOvbRPDEgXrNekd7l94i3py/yY/J6:bAvJCF+RQgJeab4sy/lA
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-24_ccffdc1c6a141ad3b4215ecbda7b1a31_cryptolocker.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
2024-05-24_ccffdc1c6a141ad3b4215ecbda7b1a31_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-05-24_ccffdc1c6a141ad3b4215ecbda7b1a31_cryptolocker
-
Size
43KB
-
MD5
ccffdc1c6a141ad3b4215ecbda7b1a31
-
SHA1
17c0610c8668934450171747890eb3ea7d539774
-
SHA256
9408d69937bb68428acbee3ff4bf4fb32edf3c0afa042fe0a61fac7da10f7976
-
SHA512
c8c93933e57222ecabde45d69f8f796d314c52cd43e4bd84b3b5162664aba3dcf4cd55c36c5508c82524f1915723f8b2fa21f4c55dd4d46dbcbe8c55d725d108
-
SSDEEP
768:bAvJCYOOvbRPDEgXrNekd7l94i3py/yY/J6:bAvJCF+RQgJeab4sy/lA
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-