General
-
Target
2024-05-25_404c5317025b33734059cdec312fa9c8_cryptolocker
-
Size
65KB
-
Sample
240525-y8gc9ahg42
-
MD5
404c5317025b33734059cdec312fa9c8
-
SHA1
73a60216d69515a0c97e2e0ed422f907e39ad2ba
-
SHA256
5ef2c3e8cc01856df5845d48bac4648f3c18643e21b76d8294062e02381e3d9f
-
SHA512
33ce6abf8a5b44b53f3681cd55b361f474573d14c2ddfab1d2ab6350ac40534fa6b0cbb38d55ad357938b93a4f6376d277ac157ce7dd783832b2d35bb1e99b39
-
SSDEEP
1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszudnYTjipvF293CiU:aq7tdgI2MyzNORQtOflIwoHNV2XBFV7C
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-25_404c5317025b33734059cdec312fa9c8_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-05-25_404c5317025b33734059cdec312fa9c8_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-05-25_404c5317025b33734059cdec312fa9c8_cryptolocker
-
Size
65KB
-
MD5
404c5317025b33734059cdec312fa9c8
-
SHA1
73a60216d69515a0c97e2e0ed422f907e39ad2ba
-
SHA256
5ef2c3e8cc01856df5845d48bac4648f3c18643e21b76d8294062e02381e3d9f
-
SHA512
33ce6abf8a5b44b53f3681cd55b361f474573d14c2ddfab1d2ab6350ac40534fa6b0cbb38d55ad357938b93a4f6376d277ac157ce7dd783832b2d35bb1e99b39
-
SSDEEP
1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszudnYTjipvF293CiU:aq7tdgI2MyzNORQtOflIwoHNV2XBFV7C
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-