General
-
Target
2024-05-26_87c586be507674e8304b31900a15da52_cryptolocker
-
Size
67KB
-
Sample
240526-ebmzzsdg2s
-
MD5
87c586be507674e8304b31900a15da52
-
SHA1
c65262f3c401843a19c34c77c3b4de3acebe84f1
-
SHA256
f3a5de85e3c78aea8c2c6f9e81a1e91c71037476796f23ed0dcc05acd472c2bb
-
SHA512
5a6d091ec17d38e6b9db5a16d1ae39dcf57f6fed5f2fa3d7f959ee1a266ae167ad596f7e10514e74909276ff0a7e6cfb257312dbe57d461eaad97970a1d83e1d
-
SSDEEP
1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2l9tMPvdfGy6:TCjsIOtEvwDpj5HE/OUHnSMY1
Static task
static1
Behavioral task
behavioral1
Sample
2024-05-26_87c586be507674e8304b31900a15da52_cryptolocker.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
2024-05-26_87c586be507674e8304b31900a15da52_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-05-26_87c586be507674e8304b31900a15da52_cryptolocker
-
Size
67KB
-
MD5
87c586be507674e8304b31900a15da52
-
SHA1
c65262f3c401843a19c34c77c3b4de3acebe84f1
-
SHA256
f3a5de85e3c78aea8c2c6f9e81a1e91c71037476796f23ed0dcc05acd472c2bb
-
SHA512
5a6d091ec17d38e6b9db5a16d1ae39dcf57f6fed5f2fa3d7f959ee1a266ae167ad596f7e10514e74909276ff0a7e6cfb257312dbe57d461eaad97970a1d83e1d
-
SSDEEP
1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2l9tMPvdfGy6:TCjsIOtEvwDpj5HE/OUHnSMY1
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-