General
-
Target
2024-06-06_6945247dc69f26a6051cf5e3ea19947a_cryptolocker
-
Size
33KB
-
Sample
240606-1a9y1sdd32
-
MD5
6945247dc69f26a6051cf5e3ea19947a
-
SHA1
5b0c2b62b8af88cf69cfb2422c07be322d6ddcaa
-
SHA256
a1d2037b609888b88b588c84e1e616c64f89fec4e09ba2828a8775af631b2cce
-
SHA512
8780084e36c3b501c32d715a72e16556f5f371097b3ec85f950adf0cf402869cc24b5ec17d789c8cbeb79c37e9e568bee5e966629d0a0878fef81cb9e991a898
-
SSDEEP
384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGXvJ4wV:bG74zYcgT/Ekd0ryfjk7
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-06_6945247dc69f26a6051cf5e3ea19947a_cryptolocker.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
2024-06-06_6945247dc69f26a6051cf5e3ea19947a_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-06-06_6945247dc69f26a6051cf5e3ea19947a_cryptolocker
-
Size
33KB
-
MD5
6945247dc69f26a6051cf5e3ea19947a
-
SHA1
5b0c2b62b8af88cf69cfb2422c07be322d6ddcaa
-
SHA256
a1d2037b609888b88b588c84e1e616c64f89fec4e09ba2828a8775af631b2cce
-
SHA512
8780084e36c3b501c32d715a72e16556f5f371097b3ec85f950adf0cf402869cc24b5ec17d789c8cbeb79c37e9e568bee5e966629d0a0878fef81cb9e991a898
-
SSDEEP
384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGXvJ4wV:bG74zYcgT/Ekd0ryfjk7
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-