d331670ab54fd69524a8e2188ff2bbcb8f6ca792030727fbb6e088e0c1f7dfe8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-01-01_4ef337641fcb8a048f0609616e935edb_cryptolocker
Size

43KB
Sample

240105-gd7hhscabp
MD5

4ef337641fcb8a048f0609616e935edb
SHA1

dbdd200e3f11165d14e3413a2f8408d9dcc6f2f3
SHA256

d331670ab54fd69524a8e2188ff2bbcb8f6ca792030727fbb6e088e0c1f7dfe8
SHA512

63e03f135c9e051a86c862f5718f342992ecf0c7f10c1d5456246de0d18fe93b4bcccf729021fbc3a526455a1bdb1233dabda904215a301f2991ae36e42fef76
SSDEEP

768:Kf1K2exg2kBwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZsBGGpebVIYLHA3Kxk:o1KhxqwtdgI2MyzNORQtOflIwoHNV2Xl

Score

7^/10

Malware Config

Targets

- Target
  
  2024-01-01_4ef337641fcb8a048f0609616e935edb_cryptolocker
- Size
  
  43KB
- MD5
  
  4ef337641fcb8a048f0609616e935edb
- SHA1
  
  dbdd200e3f11165d14e3413a2f8408d9dcc6f2f3
- SHA256
  
  d331670ab54fd69524a8e2188ff2bbcb8f6ca792030727fbb6e088e0c1f7dfe8
- SHA512
  
  63e03f135c9e051a86c862f5718f342992ecf0c7f10c1d5456246de0d18fe93b4bcccf729021fbc3a526455a1bdb1233dabda904215a301f2991ae36e42fef76
- SSDEEP
  
  768:Kf1K2exg2kBwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZsBGGpebVIYLHA3Kxk:o1KhxqwtdgI2MyzNORQtOflIwoHNV2Xl
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2