General
-
Target
2024-06-13_17a968a51c988fb9c9da95a05b4c71d2_cryptolocker
-
Size
43KB
-
Sample
240613-dzgmfawell
-
MD5
17a968a51c988fb9c9da95a05b4c71d2
-
SHA1
9ebf3426766efd0f96b08168bf1c968fc431c0cc
-
SHA256
ecab212b3b9b40dfaa41392a98a9805368e5830f3b5d193ffc6c43546a136963
-
SHA512
f8128a0c61dc65f7a64678bc978059e7e07ef54b7bf3574e0ba94e8ea6b81b0c7c8eed5fc3a045a36925ac2ce5371ae044007b8763a7575c53abf2d0d0abc8f1
-
SSDEEP
768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVaD3TP7DFHuRcD9CtJo:X6QFElP6n+gJQMOtEvwDpjBmzDkWD8tS
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-13_17a968a51c988fb9c9da95a05b4c71d2_cryptolocker.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
2024-06-13_17a968a51c988fb9c9da95a05b4c71d2_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-06-13_17a968a51c988fb9c9da95a05b4c71d2_cryptolocker
-
Size
43KB
-
MD5
17a968a51c988fb9c9da95a05b4c71d2
-
SHA1
9ebf3426766efd0f96b08168bf1c968fc431c0cc
-
SHA256
ecab212b3b9b40dfaa41392a98a9805368e5830f3b5d193ffc6c43546a136963
-
SHA512
f8128a0c61dc65f7a64678bc978059e7e07ef54b7bf3574e0ba94e8ea6b81b0c7c8eed5fc3a045a36925ac2ce5371ae044007b8763a7575c53abf2d0d0abc8f1
-
SSDEEP
768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVaD3TP7DFHuRcD9CtJo:X6QFElP6n+gJQMOtEvwDpjBmzDkWD8tS
Score9/10-
Detection of CryptoLocker Variants
-
Detection of Cryptolocker Samples
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-