General
-
Target
2024-06-02_6c4ac46916d32700e41fb9bc73e9418c_cryptolocker
-
Size
44KB
-
Sample
240602-2b5alaac79
-
MD5
6c4ac46916d32700e41fb9bc73e9418c
-
SHA1
132f0c12ddcd496bc639be6d570ba4027d6f6d4d
-
SHA256
9e55b49f7a5d313f08f4e1c395dba8a7aea35f73ba800b4a4c8f297532081708
-
SHA512
78eb644f8c2099f3e81dbd71b94ee4c60bcf58a8de7aea3bb39d9e64fe3d7be847c179f8d6695cd90a553d27e0ed778712073036ec14b95dcf9d1d2b53f3816c
-
SSDEEP
768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAH0v:bCDOw9aMDooc+vAUv
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-02_6c4ac46916d32700e41fb9bc73e9418c_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-06-02_6c4ac46916d32700e41fb9bc73e9418c_cryptolocker.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
2024-06-02_6c4ac46916d32700e41fb9bc73e9418c_cryptolocker
-
Size
44KB
-
MD5
6c4ac46916d32700e41fb9bc73e9418c
-
SHA1
132f0c12ddcd496bc639be6d570ba4027d6f6d4d
-
SHA256
9e55b49f7a5d313f08f4e1c395dba8a7aea35f73ba800b4a4c8f297532081708
-
SHA512
78eb644f8c2099f3e81dbd71b94ee4c60bcf58a8de7aea3bb39d9e64fe3d7be847c179f8d6695cd90a553d27e0ed778712073036ec14b95dcf9d1d2b53f3816c
-
SSDEEP
768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAH0v:bCDOw9aMDooc+vAUv
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-