General
-
Target
2024-08-25_aa97cf6bc2c8a8fcf71dbbb82f400d88_cryptolocker
-
Size
32KB
-
Sample
240825-hqtmvssepl
-
MD5
aa97cf6bc2c8a8fcf71dbbb82f400d88
-
SHA1
2b47abb9c82843baa03d5496793673e0d19aa9ea
-
SHA256
6b182b4a2dbe77efc71ebe75ed501ed12f178d75e7da9eb892126282c510d158
-
SHA512
b5ef3fac89c3bcde676945fcf2383d7742a158f7307515b0e52eee869ab896a2d51ec6ce6df787e777e563176964b198002bad9d635d7d8a7fd2659b8da53ef8
-
SSDEEP
384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGXb:bG74zYcgT/Ekd0ryfje
Static task
static1
Behavioral task
behavioral1
Sample
2024-08-25_aa97cf6bc2c8a8fcf71dbbb82f400d88_cryptolocker.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
2024-08-25_aa97cf6bc2c8a8fcf71dbbb82f400d88_cryptolocker.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
2024-08-25_aa97cf6bc2c8a8fcf71dbbb82f400d88_cryptolocker
-
Size
32KB
-
MD5
aa97cf6bc2c8a8fcf71dbbb82f400d88
-
SHA1
2b47abb9c82843baa03d5496793673e0d19aa9ea
-
SHA256
6b182b4a2dbe77efc71ebe75ed501ed12f178d75e7da9eb892126282c510d158
-
SHA512
b5ef3fac89c3bcde676945fcf2383d7742a158f7307515b0e52eee869ab896a2d51ec6ce6df787e777e563176964b198002bad9d635d7d8a7fd2659b8da53ef8
-
SSDEEP
384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGXb:bG74zYcgT/Ekd0ryfje
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-