CryptoGraphic Locker Ransomware - IOC


1) Ransomware Name - CryptoGraphic Locker

2) Encrypted Extensions - .clf

3) Ransom Note File - wallpaper.jpg

4) Encrypted Algorithm - NA

5) Decryptor Link - NA

6) Screenshots -



7) Indicators of Compromise -
TheTrumpLocker@mail2tor.com
xxxx://i.imgur.com/g4Ly4AD.jpg
3q27hfpradjovwyo.onion.cab
TrumpLocker@mail2tor.com




8) File Details -
the MD5 3ac980e5fabe3b5f0f7f7742cbc66e86
the SHA1 af91647b09e9c12dcc75610f5b4be920ffefc232
the SHA256 9e0901c3bfda3b1c6542be2d8e6d81b95aea1c5c291b037c6902aee7ca30f06d
ssdeep12288: agG7jNhxhhsILV8b0TZw5Ibe2wu / b / uyWP82DeVJz / iO1z75dcqxrepMJxkk: ZGVhHmILVrwSJzGyW4LLcqtQMJu
authentihash  d685f2f5a5d8da652eff132159d8e2aa25d14ea1c2f3a63d7dc4c5fd1aa5f0af
imphash  f34d5f2d4577ed6d9ceec516c1f5a744
File size 867.5 KB (888,320 bytes)
Type of file Win32 EXE
DescriptionPE32 executable for MS Windows (GUI) Intel 80386 32-bit Mono / .Net assembly

Comments