General
-
Target
2024-06-01_81f65e5f4d12e7fc289d38021ae92911_cryptolocker
-
Size
33KB
-
Sample
240601-yvvnqade9x
-
MD5
81f65e5f4d12e7fc289d38021ae92911
-
SHA1
c5150981124684c04b3f8c2f943cb445e3ad9b99
-
SHA256
c34eff68ee0e5193f46e0ef42c61ed924fb83e8416e803e36eeb73b3d0a7e5f3
-
SHA512
78d8a9356bd098214df9d8c54c05155a363cfb089e7bde8e636bff6f600df8c54cf16eb1917b48a1031ed19ac421d276c961077df0d89ea2a24c3c3ef9ee85c8
-
SSDEEP
768:bxNQIE0eBhkL2Fo1CCwgfjOg9Arbkzos5jd+aV:bxNrC7kYo1Fxf2rYPs2
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-01_81f65e5f4d12e7fc289d38021ae92911_cryptolocker.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
2024-06-01_81f65e5f4d12e7fc289d38021ae92911_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-06-01_81f65e5f4d12e7fc289d38021ae92911_cryptolocker
-
Size
33KB
-
MD5
81f65e5f4d12e7fc289d38021ae92911
-
SHA1
c5150981124684c04b3f8c2f943cb445e3ad9b99
-
SHA256
c34eff68ee0e5193f46e0ef42c61ed924fb83e8416e803e36eeb73b3d0a7e5f3
-
SHA512
78d8a9356bd098214df9d8c54c05155a363cfb089e7bde8e636bff6f600df8c54cf16eb1917b48a1031ed19ac421d276c961077df0d89ea2a24c3c3ef9ee85c8
-
SSDEEP
768:bxNQIE0eBhkL2Fo1CCwgfjOg9Arbkzos5jd+aV:bxNrC7kYo1Fxf2rYPs2
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-