General
-
Target
2024-06-12_42d876110a7b5e38861c8a042f670c60_cryptolocker
-
Size
56KB
-
Sample
240612-xezgaswanh
-
MD5
42d876110a7b5e38861c8a042f670c60
-
SHA1
7113e649b4602619fb73e25a9d6d3a263b01c188
-
SHA256
967b984cd77a41b673ed88cd6c65d5eddc079a2ac04657257aba01b68c424b2f
-
SHA512
6a23e3f28db0b7eeebd7dd61920e7ee8e598f31d10b9206309667a0cdd9e95d46b3bba23c99d9cce1b5a2473ce3873c9985c092e1d91d808517593efad35016c
-
SSDEEP
768:b7o/2n1TCraU6GD1a4Xcn62tH/1/Lp17zJIfeVEuUr6Wx6:bc/y2lm6iH/NLp17zrV98Y
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-12_42d876110a7b5e38861c8a042f670c60_cryptolocker.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
2024-06-12_42d876110a7b5e38861c8a042f670c60_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-06-12_42d876110a7b5e38861c8a042f670c60_cryptolocker
-
Size
56KB
-
MD5
42d876110a7b5e38861c8a042f670c60
-
SHA1
7113e649b4602619fb73e25a9d6d3a263b01c188
-
SHA256
967b984cd77a41b673ed88cd6c65d5eddc079a2ac04657257aba01b68c424b2f
-
SHA512
6a23e3f28db0b7eeebd7dd61920e7ee8e598f31d10b9206309667a0cdd9e95d46b3bba23c99d9cce1b5a2473ce3873c9985c092e1d91d808517593efad35016c
-
SSDEEP
768:b7o/2n1TCraU6GD1a4Xcn62tH/1/Lp17zJIfeVEuUr6Wx6:bc/y2lm6iH/NLp17zrV98Y
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-