General
-
Target
2024-06-01_41f77d3dc2379505d24fef6ef45ec4f4_cryptolocker
-
Size
43KB
-
Sample
240601-w2sftsbg25
-
MD5
41f77d3dc2379505d24fef6ef45ec4f4
-
SHA1
91c9712487fdf5a3aee7730fc49e5f549c3cc2a4
-
SHA256
58398f1396ab36eca8f0082add025d9f1d9858bec18aa4624a55d98ee0e00ee1
-
SHA512
08c5c4f4b3b3e4d2d45c3c77ba30942aae17ed48629047c1cd08984b525cbaecd25f5ccbac82a31d142cde233e454443b555e1f17b9ec920181056cd46079d36
-
SSDEEP
768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAQd9:bCDOw9aMDooc+vAQ3
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-01_41f77d3dc2379505d24fef6ef45ec4f4_cryptolocker.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
2024-06-01_41f77d3dc2379505d24fef6ef45ec4f4_cryptolocker.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
2024-06-01_41f77d3dc2379505d24fef6ef45ec4f4_cryptolocker
-
Size
43KB
-
MD5
41f77d3dc2379505d24fef6ef45ec4f4
-
SHA1
91c9712487fdf5a3aee7730fc49e5f549c3cc2a4
-
SHA256
58398f1396ab36eca8f0082add025d9f1d9858bec18aa4624a55d98ee0e00ee1
-
SHA512
08c5c4f4b3b3e4d2d45c3c77ba30942aae17ed48629047c1cd08984b525cbaecd25f5ccbac82a31d142cde233e454443b555e1f17b9ec920181056cd46079d36
-
SSDEEP
768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAQd9:bCDOw9aMDooc+vAQ3
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-