General
-
Target
2024-06-03_4a22e3436a83edb44161b061099d5efd_cryptolocker
-
Size
56KB
-
Sample
240603-qpb1esfh5v
-
MD5
4a22e3436a83edb44161b061099d5efd
-
SHA1
3410eef89026c47f42c4a60fca6304e6ebcd311f
-
SHA256
b670f3235cf86ae0c4152912defb75afdab50ce5c6434f5851344e340e379032
-
SHA512
9b02a8a65707c6ffa3ddae0c42724ae139850f0f8129d431cd4a555352991edcb510310e8de2b13ab5c6f0ce0c035bbc97259bd0eeedc06ae6975347f5d0a62c
-
SSDEEP
768:b7o/2n1TCraU6GD1a4Xcn62tH/1/Lp17zJIfeVEuUr6WZ:bc/y2lm6iH/NLp17zrV98Z
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-03_4a22e3436a83edb44161b061099d5efd_cryptolocker.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
2024-06-03_4a22e3436a83edb44161b061099d5efd_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-06-03_4a22e3436a83edb44161b061099d5efd_cryptolocker
-
Size
56KB
-
MD5
4a22e3436a83edb44161b061099d5efd
-
SHA1
3410eef89026c47f42c4a60fca6304e6ebcd311f
-
SHA256
b670f3235cf86ae0c4152912defb75afdab50ce5c6434f5851344e340e379032
-
SHA512
9b02a8a65707c6ffa3ddae0c42724ae139850f0f8129d431cd4a555352991edcb510310e8de2b13ab5c6f0ce0c035bbc97259bd0eeedc06ae6975347f5d0a62c
-
SSDEEP
768:b7o/2n1TCraU6GD1a4Xcn62tH/1/Lp17zJIfeVEuUr6WZ:bc/y2lm6iH/NLp17zrV98Z
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-