f38e256818e6b01260c6e67aef5d087ddf5ba4d9792a18cbbc3fc26eb8042299 | Triage

Sharing

General

Target

2024-01-01_a36b6bab6491287f04d16e33804218b4_cryptolocker
Size

38KB
Sample

240105-gg9r2sdafk
MD5

a36b6bab6491287f04d16e33804218b4
SHA1

7f4f6cc416f74d6e9b5e0b3f3351dd9b0adb6261
SHA256

f38e256818e6b01260c6e67aef5d087ddf5ba4d9792a18cbbc3fc26eb8042299
SHA512

994bedee148a03aad5f16e03b3e478486cc2dd0459e20f8ff48ac7fb6012e905dd2c027285b864236369318b7eb1216f50f96a6f6d20f435b97ad31ce21b9f92
SSDEEP

768:V6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpjeJQLI3Jnoehy543yAZ:V6QFElP6n+gMQMOtEvwDpjeJQy1hySCa

Score

7^/10

Malware Config

Targets

- Target
  
  2024-01-01_a36b6bab6491287f04d16e33804218b4_cryptolocker
- Size
  
  38KB
- MD5
  
  a36b6bab6491287f04d16e33804218b4
- SHA1
  
  7f4f6cc416f74d6e9b5e0b3f3351dd9b0adb6261
- SHA256
  
  f38e256818e6b01260c6e67aef5d087ddf5ba4d9792a18cbbc3fc26eb8042299
- SHA512
  
  994bedee148a03aad5f16e03b3e478486cc2dd0459e20f8ff48ac7fb6012e905dd2c027285b864236369318b7eb1216f50f96a6f6d20f435b97ad31ce21b9f92
- SSDEEP
  
  768:V6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpjeJQLI3Jnoehy543yAZ:V6QFElP6n+gMQMOtEvwDpjeJQy1hySCa
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2