General
-
Target
2024-06-11_8f43dd2877eb3d4a3499e70ba3f06f31_cryptolocker
-
Size
66KB
-
Sample
240611-csnlqs1ejr
-
MD5
8f43dd2877eb3d4a3499e70ba3f06f31
-
SHA1
1ac7502fd74a031cc6f8984f5f6300f0409262ee
-
SHA256
3fb3a815bdff3023da6319824de87bb9c077a62868723da5d6664c9e4e94e9bc
-
SHA512
6a358ffbd07f12f021ac7756e538c0908d14fbcdc562b79625a2a7bb3eb89ccfc7f650b580996199725648ad8ecb4f353526030c50f5a077e2af28b5270c92f6
-
SSDEEP
1536:V6QFElP6n+gMQMOtEvwDpjyaLccVCbmh85q:V6a+pOtEvwDpjv5
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-11_8f43dd2877eb3d4a3499e70ba3f06f31_cryptolocker.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
2024-06-11_8f43dd2877eb3d4a3499e70ba3f06f31_cryptolocker.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
2024-06-11_8f43dd2877eb3d4a3499e70ba3f06f31_cryptolocker
-
Size
66KB
-
MD5
8f43dd2877eb3d4a3499e70ba3f06f31
-
SHA1
1ac7502fd74a031cc6f8984f5f6300f0409262ee
-
SHA256
3fb3a815bdff3023da6319824de87bb9c077a62868723da5d6664c9e4e94e9bc
-
SHA512
6a358ffbd07f12f021ac7756e538c0908d14fbcdc562b79625a2a7bb3eb89ccfc7f650b580996199725648ad8ecb4f353526030c50f5a077e2af28b5270c92f6
-
SSDEEP
1536:V6QFElP6n+gMQMOtEvwDpjyaLccVCbmh85q:V6a+pOtEvwDpjv5
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-