General
-
Target
2024-06-12_0d61c06103007cab9331312b031fd1b1_cryptolocker
-
Size
39KB
-
Sample
240612-s7hxssthrr
-
MD5
0d61c06103007cab9331312b031fd1b1
-
SHA1
882949596e355a7e9df474a7d1a4984f15a9f1c2
-
SHA256
90d74aaff0877ea5c3cfc6580763c8b709e03ea339dd6aeeb2ce6b5de44b71ee
-
SHA512
89622edfe015899ba3b429ed43f13caed17933892dd982a6f7432c0460c3b293f8675ecb4a8e3f72ee4df76ab5846af82148ac66bb950419b1dd082770c3f85a
-
SSDEEP
768:b7o/2n1TCraU6GD1a4Xt9bRUlV5hbb/qu:bc/y2lLRUlVv3/T
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-12_0d61c06103007cab9331312b031fd1b1_cryptolocker.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
2024-06-12_0d61c06103007cab9331312b031fd1b1_cryptolocker.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
2024-06-12_0d61c06103007cab9331312b031fd1b1_cryptolocker
-
Size
39KB
-
MD5
0d61c06103007cab9331312b031fd1b1
-
SHA1
882949596e355a7e9df474a7d1a4984f15a9f1c2
-
SHA256
90d74aaff0877ea5c3cfc6580763c8b709e03ea339dd6aeeb2ce6b5de44b71ee
-
SHA512
89622edfe015899ba3b429ed43f13caed17933892dd982a6f7432c0460c3b293f8675ecb4a8e3f72ee4df76ab5846af82148ac66bb950419b1dd082770c3f85a
-
SSDEEP
768:b7o/2n1TCraU6GD1a4Xt9bRUlV5hbb/qu:bc/y2lLRUlVv3/T
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-