0bac19e4f159db930c6675b9a6b97ad011759782ae9b8cb6fa7173ba27e00d97 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-01-03_11108d07701728761b3e1dbf6678ed80_cryptolocker
Size

42KB
Sample

240104-sl1kqadcg5
MD5

11108d07701728761b3e1dbf6678ed80
SHA1

8110517bb98002c1457d22427512e02753eabd70
SHA256

0bac19e4f159db930c6675b9a6b97ad011759782ae9b8cb6fa7173ba27e00d97
SHA512

e0772d93ba13bedaaf430ac4ac76c58d3f00b28da58e22b53f97ab51a3f7598a6801e24d476be373fb094d56ddda29a0ea5ec4a611569649ede6e493fe1d8fef
SSDEEP

768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4tKMTfwDu:vj+jsMQMOtEvwDpj5Ht1TfwDu

Score

7^/10

Malware Config

Targets

- Target
  
  2024-01-03_11108d07701728761b3e1dbf6678ed80_cryptolocker
- Size
  
  42KB
- MD5
  
  11108d07701728761b3e1dbf6678ed80
- SHA1
  
  8110517bb98002c1457d22427512e02753eabd70
- SHA256
  
  0bac19e4f159db930c6675b9a6b97ad011759782ae9b8cb6fa7173ba27e00d97
- SHA512
  
  e0772d93ba13bedaaf430ac4ac76c58d3f00b28da58e22b53f97ab51a3f7598a6801e24d476be373fb094d56ddda29a0ea5ec4a611569649ede6e493fe1d8fef
- SSDEEP
  
  768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4tKMTfwDu:vj+jsMQMOtEvwDpj5Ht1TfwDu
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2