General
-
Target
2024-06-13_232c21d788a15ba35f9810819eb19ecb_cryptolocker
-
Size
45KB
-
Sample
240613-nvwwnsxbrf
-
MD5
232c21d788a15ba35f9810819eb19ecb
-
SHA1
9412bb5c4c9b17d3a379c4d2a09723c04a208a58
-
SHA256
0d8f2fa4000c35f96ce3bde6fe3e7296407d548cce3e6e4b563e2108d1cfe947
-
SHA512
6e987eee84158b719069f164fddcb7ec0492e1042abdc63051d264ea63ff0b128da6b53786e2d68043e2d3154ff36ca2eaa9fbaa7db97d6a419fe4d30897a366
-
SSDEEP
384:bm74uGLLQRcsdeQ72ngEr4K7YmE8jb0nrlwfjDUadQC8p:bm74zYcgT/EkM0ryfjPdQZp
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-13_232c21d788a15ba35f9810819eb19ecb_cryptolocker.exe
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
2024-06-13_232c21d788a15ba35f9810819eb19ecb_cryptolocker.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
2024-06-13_232c21d788a15ba35f9810819eb19ecb_cryptolocker
-
Size
45KB
-
MD5
232c21d788a15ba35f9810819eb19ecb
-
SHA1
9412bb5c4c9b17d3a379c4d2a09723c04a208a58
-
SHA256
0d8f2fa4000c35f96ce3bde6fe3e7296407d548cce3e6e4b563e2108d1cfe947
-
SHA512
6e987eee84158b719069f164fddcb7ec0492e1042abdc63051d264ea63ff0b128da6b53786e2d68043e2d3154ff36ca2eaa9fbaa7db97d6a419fe4d30897a366
-
SSDEEP
384:bm74uGLLQRcsdeQ72ngEr4K7YmE8jb0nrlwfjDUadQC8p:bm74zYcgT/EkM0ryfjPdQZp
Score9/10-
Detection of CryptoLocker Variants
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-