General
-
Target
2024-06-02_c29253cd33eb5c89978ba34e7ce00598_cryptolocker
-
Size
36KB
-
Sample
240602-fb13aabd5s
-
MD5
c29253cd33eb5c89978ba34e7ce00598
-
SHA1
0a069a975944ef3edb8fe8b497842ec2120b3563
-
SHA256
61b824350ade80ad868f136fc164cfc8d11d0e9aa40a3dba487c1589675d63b0
-
SHA512
3d5d0fe352d150f5bf4d80d2adc7f2798d40e1171516cf54db522683ab61af4a300948550cb248682dccb607ea369559d8e43ab3efebf5a7942333872fd47ab6
-
SSDEEP
384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4l8tFFxE2B0qZf:btB9g/WItCSsAGjX7r3BTZf
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-02_c29253cd33eb5c89978ba34e7ce00598_cryptolocker.exe
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
2024-06-02_c29253cd33eb5c89978ba34e7ce00598_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-06-02_c29253cd33eb5c89978ba34e7ce00598_cryptolocker
-
Size
36KB
-
MD5
c29253cd33eb5c89978ba34e7ce00598
-
SHA1
0a069a975944ef3edb8fe8b497842ec2120b3563
-
SHA256
61b824350ade80ad868f136fc164cfc8d11d0e9aa40a3dba487c1589675d63b0
-
SHA512
3d5d0fe352d150f5bf4d80d2adc7f2798d40e1171516cf54db522683ab61af4a300948550cb248682dccb607ea369559d8e43ab3efebf5a7942333872fd47ab6
-
SSDEEP
384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4l8tFFxE2B0qZf:btB9g/WItCSsAGjX7r3BTZf
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-