General
-
Target
2024-06-06_d435fc0e7e986aa3004673e67d81d95d_cryptolocker
-
Size
390KB
-
Sample
240606-y24vzabe3y
-
MD5
d435fc0e7e986aa3004673e67d81d95d
-
SHA1
57d1c1bb04906ae0b722105f45dd2ef601464199
-
SHA256
1d971accd98868159881e7b9aaf22378ca0a3f64ef3b68c4bfe5cc9fb7d12e86
-
SHA512
cba60c58ebf7adaad8e866feeab57c82bcccd670139501667c4fa7848297add25f6d737097d5bb567e8b0ce5c7ba414c67128c7c8b9df2e854c097740b9496fa
-
SSDEEP
6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXRs:nnOflT/ZFIjBz3xjTxynGUOUhXRs
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-06_d435fc0e7e986aa3004673e67d81d95d_cryptolocker.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
2024-06-06_d435fc0e7e986aa3004673e67d81d95d_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-06-06_d435fc0e7e986aa3004673e67d81d95d_cryptolocker
-
Size
390KB
-
MD5
d435fc0e7e986aa3004673e67d81d95d
-
SHA1
57d1c1bb04906ae0b722105f45dd2ef601464199
-
SHA256
1d971accd98868159881e7b9aaf22378ca0a3f64ef3b68c4bfe5cc9fb7d12e86
-
SHA512
cba60c58ebf7adaad8e866feeab57c82bcccd670139501667c4fa7848297add25f6d737097d5bb567e8b0ce5c7ba414c67128c7c8b9df2e854c097740b9496fa
-
SSDEEP
6144:nnOsaQgAOjvrZFODJjBz3j1jTqQy6v2GGnugOtihzXRs:nnOflT/ZFIjBz3xjTxynGUOUhXRs
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-