General
-
Target
2024-06-03_f2d30566360cb92855181b14a90ec21a_cryptolocker
-
Size
62KB
-
Sample
240603-jp94wsge4w
-
MD5
f2d30566360cb92855181b14a90ec21a
-
SHA1
b291c701dba4eaa1bd2bd9f6e150f4dda26151f0
-
SHA256
df4524b5ebb3b98aea457e19e2641cef71bc3ffe16460119527621989340573c
-
SHA512
d32caa2e28dde74fdf08aebad6fd17a193f52e0a693585114de689b55b981ef8292de547db47af50db5666db9cef3820264c85444c316360941b28fc94698da4
-
SSDEEP
1536:btB9g/xtCSKfxLIc//Xr+/AO/kIZ3ft2nVuTKB6nggOlHdUHZn9:btng54SMLr+/AO/kIhfoKMHda9
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-03_f2d30566360cb92855181b14a90ec21a_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-06-03_f2d30566360cb92855181b14a90ec21a_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-06-03_f2d30566360cb92855181b14a90ec21a_cryptolocker
-
Size
62KB
-
MD5
f2d30566360cb92855181b14a90ec21a
-
SHA1
b291c701dba4eaa1bd2bd9f6e150f4dda26151f0
-
SHA256
df4524b5ebb3b98aea457e19e2641cef71bc3ffe16460119527621989340573c
-
SHA512
d32caa2e28dde74fdf08aebad6fd17a193f52e0a693585114de689b55b981ef8292de547db47af50db5666db9cef3820264c85444c316360941b28fc94698da4
-
SSDEEP
1536:btB9g/xtCSKfxLIc//Xr+/AO/kIZ3ft2nVuTKB6nggOlHdUHZn9:btng54SMLr+/AO/kIhfoKMHda9
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-