General
-
Target
2024-06-06_8be2f4c4932b4b123f562788c4e56454_cryptolocker
-
Size
48KB
-
Sample
240606-1c1s5acc4w
-
MD5
8be2f4c4932b4b123f562788c4e56454
-
SHA1
361c2206f026a2430e1561b6e40fbe7fac3fb3a8
-
SHA256
d3faf175d796d5d599e97c3881eca36da37d13ed50aa81bd48d0b4cfa36db9ac
-
SHA512
2052d52abdb2b80539edfee9b2e3eb72996ecfd5464092ee1c831ff4e6007d6163b61d9dd64f69ac7a106c12513059ea8536d1d55b1ecc46317034131e85527c
-
SSDEEP
768:79inqyNR/QtOOtEvwDpjBKccJVODvy3Sp8Ld:79mqyNhQMOtEvwDpjBzckqSuB
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-06_8be2f4c4932b4b123f562788c4e56454_cryptolocker.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
2024-06-06_8be2f4c4932b4b123f562788c4e56454_cryptolocker.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
2024-06-06_8be2f4c4932b4b123f562788c4e56454_cryptolocker
-
Size
48KB
-
MD5
8be2f4c4932b4b123f562788c4e56454
-
SHA1
361c2206f026a2430e1561b6e40fbe7fac3fb3a8
-
SHA256
d3faf175d796d5d599e97c3881eca36da37d13ed50aa81bd48d0b4cfa36db9ac
-
SHA512
2052d52abdb2b80539edfee9b2e3eb72996ecfd5464092ee1c831ff4e6007d6163b61d9dd64f69ac7a106c12513059ea8536d1d55b1ecc46317034131e85527c
-
SSDEEP
768:79inqyNR/QtOOtEvwDpjBKccJVODvy3Sp8Ld:79mqyNhQMOtEvwDpjBzckqSuB
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-