General
-
Target
2024-08-25_abf1576a1b526958cae255287f36ce72_cryptolocker
-
Size
34KB
-
Sample
240825-hq5ecs1cpf
-
MD5
abf1576a1b526958cae255287f36ce72
-
SHA1
5237ddf4db4d0b1da995fee92e6693ab7fb3b43d
-
SHA256
18d4d809425609425a7942223d487dd308634fa0023973194a48cda9197a8250
-
SHA512
32e436e5651177772d9c6f95e2ab4a0370eaa346cccf5dd43ab64e2264ba31500ac65a93066b33d336aa1f47a6dfdef719213060944ae3809fee5e89d62b34f9
-
SSDEEP
384:bM7Q0pjC4GybxMv01d3AcASBQMf6i/zzzcYgUPSznStEkcsgYKJ:b/yC4GyNM01GuQMNXw2PSjSKkcJYKJ
Static task
static1
Behavioral task
behavioral1
Sample
2024-08-25_abf1576a1b526958cae255287f36ce72_cryptolocker.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
2024-08-25_abf1576a1b526958cae255287f36ce72_cryptolocker.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
2024-08-25_abf1576a1b526958cae255287f36ce72_cryptolocker
-
Size
34KB
-
MD5
abf1576a1b526958cae255287f36ce72
-
SHA1
5237ddf4db4d0b1da995fee92e6693ab7fb3b43d
-
SHA256
18d4d809425609425a7942223d487dd308634fa0023973194a48cda9197a8250
-
SHA512
32e436e5651177772d9c6f95e2ab4a0370eaa346cccf5dd43ab64e2264ba31500ac65a93066b33d336aa1f47a6dfdef719213060944ae3809fee5e89d62b34f9
-
SSDEEP
384:bM7Q0pjC4GybxMv01d3AcASBQMf6i/zzzcYgUPSznStEkcsgYKJ:b/yC4GyNM01GuQMNXw2PSjSKkcJYKJ
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-