General
-
Target
2024-06-11_8a72ec9814a8609ebd64ce26ec512464_cryptolocker
-
Size
32KB
-
Sample
240611-d6qtpatdjn
-
MD5
8a72ec9814a8609ebd64ce26ec512464
-
SHA1
eb42b5b92f1a4685bf9fd10717e9504e05f27831
-
SHA256
b9b5eba272f71d0018f62b4b8f342e1b991a05265a6f369360ef22bffd80b283
-
SHA512
84139716747a4b7d82cda59dbe579b92407bf8dfbe45448302681345370e4917aa6e6723b5884303420a33404f482a6f4ebd96c7dd2f40e4d25a111c0610a295
-
SSDEEP
384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGOo9GcPy:bG74zYcgT/Ekd0ryfjoGcPy
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-11_8a72ec9814a8609ebd64ce26ec512464_cryptolocker.exe
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
2024-06-11_8a72ec9814a8609ebd64ce26ec512464_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-06-11_8a72ec9814a8609ebd64ce26ec512464_cryptolocker
-
Size
32KB
-
MD5
8a72ec9814a8609ebd64ce26ec512464
-
SHA1
eb42b5b92f1a4685bf9fd10717e9504e05f27831
-
SHA256
b9b5eba272f71d0018f62b4b8f342e1b991a05265a6f369360ef22bffd80b283
-
SHA512
84139716747a4b7d82cda59dbe579b92407bf8dfbe45448302681345370e4917aa6e6723b5884303420a33404f482a6f4ebd96c7dd2f40e4d25a111c0610a295
-
SSDEEP
384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGOo9GcPy:bG74zYcgT/Ekd0ryfjoGcPy
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-