General
-
Target
2024-06-12_44ad525b6776f50ff33dc31c8de69791_cryptolocker
-
Size
97KB
-
Sample
240612-xe4e9azbkl
-
MD5
44ad525b6776f50ff33dc31c8de69791
-
SHA1
b4bb20941bb70e621b0b43a13c337180ee79127f
-
SHA256
b956232247ec8e9f4440dcb23290448b369284fff171a8cf3ca90f63aa29fc93
-
SHA512
c68eb5bfd504ca5bcf15bde09eba4e6d99a21e75bd62475e588f2a0e799d6ae0b767b137a7d3391446cdc3e7b923afab0f7edab907029b95bd12e0adebf9b50b
-
SSDEEP
1536:V6QFElP6n+gMQMOtEvwDpjQGYQbN/PKwMg0:V6a+pOtEvwDpjtz4
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-12_44ad525b6776f50ff33dc31c8de69791_cryptolocker.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
2024-06-12_44ad525b6776f50ff33dc31c8de69791_cryptolocker.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
2024-06-12_44ad525b6776f50ff33dc31c8de69791_cryptolocker
-
Size
97KB
-
MD5
44ad525b6776f50ff33dc31c8de69791
-
SHA1
b4bb20941bb70e621b0b43a13c337180ee79127f
-
SHA256
b956232247ec8e9f4440dcb23290448b369284fff171a8cf3ca90f63aa29fc93
-
SHA512
c68eb5bfd504ca5bcf15bde09eba4e6d99a21e75bd62475e588f2a0e799d6ae0b767b137a7d3391446cdc3e7b923afab0f7edab907029b95bd12e0adebf9b50b
-
SSDEEP
1536:V6QFElP6n+gMQMOtEvwDpjQGYQbN/PKwMg0:V6a+pOtEvwDpjtz4
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-