General
-
Target
2024-09-02_ec987b95fc53640ae0783500bc0bd680_cryptolocker
-
Size
42KB
-
Sample
240902-pr4msa1dnc
-
MD5
ec987b95fc53640ae0783500bc0bd680
-
SHA1
068065a2fd83a712a9b5a3d9748a7b9a0ad7c8e1
-
SHA256
18212d3b525568af92329a4491ba1487e0691f0ccc2f9307a0f5cb42d76a93bd
-
SHA512
69d50d876b6fe7b6b72bfd599a3499459e5f7d8544aca2715b770dea308499882522fee8e116836830505154b7f0e8518cdf96fe12be708d2d279c795a10bc8e
-
SSDEEP
768:bA74zYcgT/Ekd0ryfjPIunqpeNswmT3HwnCr:bA6YcA/X6G0W143Qs
Static task
static1
Behavioral task
behavioral1
Sample
2024-09-02_ec987b95fc53640ae0783500bc0bd680_cryptolocker.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
2024-09-02_ec987b95fc53640ae0783500bc0bd680_cryptolocker.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
2024-09-02_ec987b95fc53640ae0783500bc0bd680_cryptolocker
-
Size
42KB
-
MD5
ec987b95fc53640ae0783500bc0bd680
-
SHA1
068065a2fd83a712a9b5a3d9748a7b9a0ad7c8e1
-
SHA256
18212d3b525568af92329a4491ba1487e0691f0ccc2f9307a0f5cb42d76a93bd
-
SHA512
69d50d876b6fe7b6b72bfd599a3499459e5f7d8544aca2715b770dea308499882522fee8e116836830505154b7f0e8518cdf96fe12be708d2d279c795a10bc8e
-
SSDEEP
768:bA74zYcgT/Ekd0ryfjPIunqpeNswmT3HwnCr:bA6YcA/X6G0W143Qs
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-