General
-
Target
2024-05-25_7aa8a621d687440f1cbb001caf3195d0_cryptolocker
-
Size
32KB
-
Sample
240525-a2pjaagh28
-
MD5
7aa8a621d687440f1cbb001caf3195d0
-
SHA1
52dec7342b6fb730022be641dd47fe5bc7500ba3
-
SHA256
ebd753b491e1286d9653ba9051d256cc3609556635d392f78bf8df188129d591
-
SHA512
5ee3658702f24818ebcf7806c00df5774a87e807008094a61b97fc96533d38c4d460f92d54364c2e7c7b3e007d481e3b659718d7ca1af279e145e6a12dc12c10
-
SSDEEP
384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGOo9Gj:bG74zYcgT/Ekd0ryfjoGj
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-25_7aa8a621d687440f1cbb001caf3195d0_cryptolocker.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
2024-05-25_7aa8a621d687440f1cbb001caf3195d0_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-05-25_7aa8a621d687440f1cbb001caf3195d0_cryptolocker
-
Size
32KB
-
MD5
7aa8a621d687440f1cbb001caf3195d0
-
SHA1
52dec7342b6fb730022be641dd47fe5bc7500ba3
-
SHA256
ebd753b491e1286d9653ba9051d256cc3609556635d392f78bf8df188129d591
-
SHA512
5ee3658702f24818ebcf7806c00df5774a87e807008094a61b97fc96533d38c4d460f92d54364c2e7c7b3e007d481e3b659718d7ca1af279e145e6a12dc12c10
-
SSDEEP
384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGOo9Gj:bG74zYcgT/Ekd0ryfjoGj
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-