General
-
Target
2024-06-01_406161008137361c1f27204c3936b708_cryptolocker
-
Size
87KB
-
Sample
240601-w2ngwaah8z
-
MD5
406161008137361c1f27204c3936b708
-
SHA1
c4a21c7dc617256f03b86de3c7f068934cfa0187
-
SHA256
9bcd4d531561b1dd42b263b5366d528d80f11f26031b275028970bccfb582fe0
-
SHA512
fe2e21dbe93e9fec50cd758d3f5739aef5db83994e14bce6029af6bb316693d09ecb1361b874f70a0a6d8d3a3e9ee47708739205ea99af6562f30be43abdbf8d
-
SSDEEP
1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfWafHNBULu:vCjsIOtEvwDpj5H9YvQd29
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-01_406161008137361c1f27204c3936b708_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-06-01_406161008137361c1f27204c3936b708_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-06-01_406161008137361c1f27204c3936b708_cryptolocker
-
Size
87KB
-
MD5
406161008137361c1f27204c3936b708
-
SHA1
c4a21c7dc617256f03b86de3c7f068934cfa0187
-
SHA256
9bcd4d531561b1dd42b263b5366d528d80f11f26031b275028970bccfb582fe0
-
SHA512
fe2e21dbe93e9fec50cd758d3f5739aef5db83994e14bce6029af6bb316693d09ecb1361b874f70a0a6d8d3a3e9ee47708739205ea99af6562f30be43abdbf8d
-
SSDEEP
1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfWafHNBULu:vCjsIOtEvwDpj5H9YvQd29
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-