General
-
Target
2024-06-10_1851a87863892bb86b8721c6236745ce_cryptolocker
-
Size
56KB
-
Sample
240610-fdrxdsch87
-
MD5
1851a87863892bb86b8721c6236745ce
-
SHA1
1fd4679a79aa565f055a0b5a3f9e0a646e424b50
-
SHA256
e34d5392586bf91a990cc30a6de7c5155d8fd5fdf789064857f087f70dc13e37
-
SHA512
805199ea0f21fa7afe0d1fdef2ccb045260d7dd716b64a13d7bd41b67f42ad235a16019ecdb31fd0129ca385f95a3d14a7474c614a41cd77c54b558a79f6a624
-
SSDEEP
768:b7o/2n1TCraU6GD1a4Xcn62tH/1/Lp17zJIfeVEuUr6W/:bc/y2lm6iH/NLp17zrV98/
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-10_1851a87863892bb86b8721c6236745ce_cryptolocker.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2024-06-10_1851a87863892bb86b8721c6236745ce_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-06-10_1851a87863892bb86b8721c6236745ce_cryptolocker
-
Size
56KB
-
MD5
1851a87863892bb86b8721c6236745ce
-
SHA1
1fd4679a79aa565f055a0b5a3f9e0a646e424b50
-
SHA256
e34d5392586bf91a990cc30a6de7c5155d8fd5fdf789064857f087f70dc13e37
-
SHA512
805199ea0f21fa7afe0d1fdef2ccb045260d7dd716b64a13d7bd41b67f42ad235a16019ecdb31fd0129ca385f95a3d14a7474c614a41cd77c54b558a79f6a624
-
SSDEEP
768:b7o/2n1TCraU6GD1a4Xcn62tH/1/Lp17zJIfeVEuUr6W/:bc/y2lm6iH/NLp17zrV98/
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-