General
-
Target
2024-06-10_61abee28bf6787e4460be9c297f83b0c_cryptolocker
-
Size
39KB
-
Sample
240610-fc92kscc3t
-
MD5
61abee28bf6787e4460be9c297f83b0c
-
SHA1
ecae814844b353abdfeeff2c5d55d3e47bbcd5bc
-
SHA256
e4d475e8c1d1c9682cedac8f0690049b48c0c199fb718836d45135fcd64a1738
-
SHA512
a4ca2eeaae730e987611cf5b52d437776e2882cfebd226e98e3cd3ce5891aecf81b0a8a356e02b1707205144976323dbe37bc34d5d2158b9bb9b4f68aff176cf
-
SSDEEP
768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjLenUg:ZzFbxmLPWQMOtEvwDpjLeB
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-10_61abee28bf6787e4460be9c297f83b0c_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-06-10_61abee28bf6787e4460be9c297f83b0c_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-06-10_61abee28bf6787e4460be9c297f83b0c_cryptolocker
-
Size
39KB
-
MD5
61abee28bf6787e4460be9c297f83b0c
-
SHA1
ecae814844b353abdfeeff2c5d55d3e47bbcd5bc
-
SHA256
e4d475e8c1d1c9682cedac8f0690049b48c0c199fb718836d45135fcd64a1738
-
SHA512
a4ca2eeaae730e987611cf5b52d437776e2882cfebd226e98e3cd3ce5891aecf81b0a8a356e02b1707205144976323dbe37bc34d5d2158b9bb9b4f68aff176cf
-
SSDEEP
768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjLenUg:ZzFbxmLPWQMOtEvwDpjLeB
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-