General
-
Target
2024-06-06_324bc571ad8cafb441f724eee2b01c86_cryptolocker
-
Size
35KB
-
Sample
240606-d1x1tage42
-
MD5
324bc571ad8cafb441f724eee2b01c86
-
SHA1
93c9f3e946b6ec5a33d76009de09593f5753274e
-
SHA256
d9d3c46f3574c4dd7cedd15a28705bd860f56ed0206babce97d6a33c41bbd79c
-
SHA512
8ca8a32bf8025d0cd89a285c13325598c34a860bb6f7ebd5f3c244f441d533bfef26bdc0024e9eb8c021f7487a94b221871994172623cec85829f2b67dd1ddaa
-
SSDEEP
768:bxNQIE0eBhkL2Fo1CCwgfjOg9Arbkzos56:bxNrC7kYo1Fxf2rYO
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-06_324bc571ad8cafb441f724eee2b01c86_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-06-06_324bc571ad8cafb441f724eee2b01c86_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-06-06_324bc571ad8cafb441f724eee2b01c86_cryptolocker
-
Size
35KB
-
MD5
324bc571ad8cafb441f724eee2b01c86
-
SHA1
93c9f3e946b6ec5a33d76009de09593f5753274e
-
SHA256
d9d3c46f3574c4dd7cedd15a28705bd860f56ed0206babce97d6a33c41bbd79c
-
SHA512
8ca8a32bf8025d0cd89a285c13325598c34a860bb6f7ebd5f3c244f441d533bfef26bdc0024e9eb8c021f7487a94b221871994172623cec85829f2b67dd1ddaa
-
SSDEEP
768:bxNQIE0eBhkL2Fo1CCwgfjOg9Arbkzos56:bxNrC7kYo1Fxf2rYO
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-