General
-
Target
2024-06-02_c51b75cead530b02adac5b86ff46495c_cryptolocker
-
Size
37KB
-
Sample
240602-fcaaysbd5y
-
MD5
c51b75cead530b02adac5b86ff46495c
-
SHA1
a24e7abf0e646b6f813f6568c67d2629cb060478
-
SHA256
e4ca7cd51436778e4ad90dbe0bab6af00559c4def6fa3adfc5341f7304ef4e5c
-
SHA512
7548a677824e685e6186e16951fef3204cacf0cbcf6242b368a2d33ed86aca87075bb86c79ada3d81957562e276472122005d9bac6b2e5f9b218efc658030ae5
-
SSDEEP
768:bAvJCYOOvbRPDEgXrNekd7l94i3pQheDIa/:bAvJCF+RQgJeab4sbZ
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-02_c51b75cead530b02adac5b86ff46495c_cryptolocker.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
2024-06-02_c51b75cead530b02adac5b86ff46495c_cryptolocker.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-06-02_c51b75cead530b02adac5b86ff46495c_cryptolocker
-
Size
37KB
-
MD5
c51b75cead530b02adac5b86ff46495c
-
SHA1
a24e7abf0e646b6f813f6568c67d2629cb060478
-
SHA256
e4ca7cd51436778e4ad90dbe0bab6af00559c4def6fa3adfc5341f7304ef4e5c
-
SHA512
7548a677824e685e6186e16951fef3204cacf0cbcf6242b368a2d33ed86aca87075bb86c79ada3d81957562e276472122005d9bac6b2e5f9b218efc658030ae5
-
SSDEEP
768:bAvJCYOOvbRPDEgXrNekd7l94i3pQheDIa/:bAvJCF+RQgJeab4sbZ
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-