General
-
Target
2024-06-01_0221689f79b77f80575fdd40582c5a32_cryptolocker
-
Size
43KB
-
Sample
240601-wzv4yaah3x
-
MD5
0221689f79b77f80575fdd40582c5a32
-
SHA1
aa6d001f8cdf97a3afd1f8f8f15370cf84e430bb
-
SHA256
ac499ffbd57c1f580eb4e2c32ec44885a58f93c74ab0df819b4c07c55625b7a9
-
SHA512
c0c063b49973a618a89d572075c09958a3cb197872be10a2bac457519815f5cff441e849bf36e66740192db2ac2dc3c1336f11fe0300ce58125a1e2dd377457a
-
SSDEEP
768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAHtP:bCDOw9aMDooc+vANP
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-01_0221689f79b77f80575fdd40582c5a32_cryptolocker.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
2024-06-01_0221689f79b77f80575fdd40582c5a32_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-06-01_0221689f79b77f80575fdd40582c5a32_cryptolocker
-
Size
43KB
-
MD5
0221689f79b77f80575fdd40582c5a32
-
SHA1
aa6d001f8cdf97a3afd1f8f8f15370cf84e430bb
-
SHA256
ac499ffbd57c1f580eb4e2c32ec44885a58f93c74ab0df819b4c07c55625b7a9
-
SHA512
c0c063b49973a618a89d572075c09958a3cb197872be10a2bac457519815f5cff441e849bf36e66740192db2ac2dc3c1336f11fe0300ce58125a1e2dd377457a
-
SSDEEP
768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAHtP:bCDOw9aMDooc+vANP
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-