General
-
Target
2024-06-01_bddc9178b854389e340bbebb394d2b07_cryptolocker
-
Size
43KB
-
Sample
240601-x7rl6ace71
-
MD5
bddc9178b854389e340bbebb394d2b07
-
SHA1
f305be64be279325ef5c141225b0a354744a9de7
-
SHA256
9d4f0317dedab6e21edfb2d1ebbab09c5216ef6e3067dbca1c646981a71eb4ba
-
SHA512
9b335194d41663f85fbfa50a4fc2d86a7497bc35587e662bea3ea3df0932b858b40298882befc48bb546c6cf017e0a30a4f42d708c309e9e58dfb127d3e9e9d9
-
SSDEEP
768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtA7:bCDOw9aMDooc+vA7
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-01_bddc9178b854389e340bbebb394d2b07_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-06-01_bddc9178b854389e340bbebb394d2b07_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-06-01_bddc9178b854389e340bbebb394d2b07_cryptolocker
-
Size
43KB
-
MD5
bddc9178b854389e340bbebb394d2b07
-
SHA1
f305be64be279325ef5c141225b0a354744a9de7
-
SHA256
9d4f0317dedab6e21edfb2d1ebbab09c5216ef6e3067dbca1c646981a71eb4ba
-
SHA512
9b335194d41663f85fbfa50a4fc2d86a7497bc35587e662bea3ea3df0932b858b40298882befc48bb546c6cf017e0a30a4f42d708c309e9e58dfb127d3e9e9d9
-
SSDEEP
768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtA7:bCDOw9aMDooc+vA7
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-