General
-
Target
2024-06-02_bee0d192e110ea59a9ecf2fde8c716cd_cryptolocker
-
Size
68KB
-
Sample
240602-fbw4bsbd4w
-
MD5
bee0d192e110ea59a9ecf2fde8c716cd
-
SHA1
78d0d74b579daa1149b3f01f595395b78ce1dc3f
-
SHA256
ce1a8206737f5a763f80e1c3366526fb2b8026de85d5697ffdcbbb035496e6da
-
SHA512
d4af11d3562598c0d5a5491554c41396695436a2b746b5531aab0c91725e57d2b38ea9844b0b8536b65105e35c79a6f7a083bf1a60062af0012f751d6a0f8dea
-
SSDEEP
1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2l9tMPvdfGyePj:TCjsIOtEvwDpj5HE/OUHnSMYF
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-02_bee0d192e110ea59a9ecf2fde8c716cd_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-06-02_bee0d192e110ea59a9ecf2fde8c716cd_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-06-02_bee0d192e110ea59a9ecf2fde8c716cd_cryptolocker
-
Size
68KB
-
MD5
bee0d192e110ea59a9ecf2fde8c716cd
-
SHA1
78d0d74b579daa1149b3f01f595395b78ce1dc3f
-
SHA256
ce1a8206737f5a763f80e1c3366526fb2b8026de85d5697ffdcbbb035496e6da
-
SHA512
d4af11d3562598c0d5a5491554c41396695436a2b746b5531aab0c91725e57d2b38ea9844b0b8536b65105e35c79a6f7a083bf1a60062af0012f751d6a0f8dea
-
SSDEEP
1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2l9tMPvdfGyePj:TCjsIOtEvwDpj5HE/OUHnSMYF
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-