509ad50cddd2a5642381c57c4ae4fa800ca508c968532d7299e8691991dc2c10 | Triage

Sharing

General

Target

2024-01-01_a6216aa1a1cd6f1b286fcd26ac73594b_cryptolocker
Size

30KB
Sample

240105-ghc5gadahk
MD5

a6216aa1a1cd6f1b286fcd26ac73594b
SHA1

19422828ba1110ace4821b8cb9d162914a308e08
SHA256

509ad50cddd2a5642381c57c4ae4fa800ca508c968532d7299e8691991dc2c10
SHA512

7cdb686d2e8ad6dac8a7fd7290482fd272a129b84df88a6f50400692eaed1a42dfdf5b59c9b712a86eeaed320f243bc4999bbd3cf5a3c64bb2f3d6430ad7ce1b
SSDEEP

384:bA74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUgIunIYvxF:bA74zYcgT/Ekd0ryfjPIunvvxF

Score

7^/10

Malware Config

Targets

- Target
  
  2024-01-01_a6216aa1a1cd6f1b286fcd26ac73594b_cryptolocker
- Size
  
  30KB
- MD5
  
  a6216aa1a1cd6f1b286fcd26ac73594b
- SHA1
  
  19422828ba1110ace4821b8cb9d162914a308e08
- SHA256
  
  509ad50cddd2a5642381c57c4ae4fa800ca508c968532d7299e8691991dc2c10
- SHA512
  
  7cdb686d2e8ad6dac8a7fd7290482fd272a129b84df88a6f50400692eaed1a42dfdf5b59c9b712a86eeaed320f243bc4999bbd3cf5a3c64bb2f3d6430ad7ce1b
- SSDEEP
  
  384:bA74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUgIunIYvxF:bA74zYcgT/Ekd0ryfjPIunvvxF
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2