eacaf081a32c8c53b0e0a7f0bdf43f50867d63373a81816adf61c29150b57bda | Triage

Sharing

General

Target

2024-01-01_51864fa29ad7aacc38a616968039c082_cryptolocker
Size

51KB
Sample

240105-gd9ymscadm
MD5

51864fa29ad7aacc38a616968039c082
SHA1

f4c6e2a9504de7ab66555b68345f1abb541d797b
SHA256

eacaf081a32c8c53b0e0a7f0bdf43f50867d63373a81816adf61c29150b57bda
SHA512

044512a6364587e87a9cfb292badf0a99c16853b26180b662d06e1d2040d1987635dbf4f9b2a2d941b9e19bc6728c2f572d9f75adda468a0e1ddd495eb614f0d
SSDEEP

768:bIDOw9UiaCHfjnE0Sfa7ilR0p9u6p4ICNBCXK9S1bk:bIDOw9a0DwitDZz11Q

Score

7^/10

Malware Config

Targets

- Target
  
  2024-01-01_51864fa29ad7aacc38a616968039c082_cryptolocker
- Size
  
  51KB
- MD5
  
  51864fa29ad7aacc38a616968039c082
- SHA1
  
  f4c6e2a9504de7ab66555b68345f1abb541d797b
- SHA256
  
  eacaf081a32c8c53b0e0a7f0bdf43f50867d63373a81816adf61c29150b57bda
- SHA512
  
  044512a6364587e87a9cfb292badf0a99c16853b26180b662d06e1d2040d1987635dbf4f9b2a2d941b9e19bc6728c2f572d9f75adda468a0e1ddd495eb614f0d
- SSDEEP
  
  768:bIDOw9UiaCHfjnE0Sfa7ilR0p9u6p4ICNBCXK9S1bk:bIDOw9a0DwitDZz11Q
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2