5064fc8a5cf7b83b6e0a8cea12a43611d43e718d45449fdadf491a89e57fe6b5 | Triage

Sharing

General

Target

2024-01-01_a8cc6ae17a80640733844d7e99f3905a_cryptolocker
Size

65KB
Sample

240105-ghggwsead5
MD5

a8cc6ae17a80640733844d7e99f3905a
SHA1

14c1c8758873538fd56cd23afdfa09c3f948aa4a
SHA256

5064fc8a5cf7b83b6e0a8cea12a43611d43e718d45449fdadf491a89e57fe6b5
SHA512

ba6a5a6943bc99124040b842d835ffe6dd897dd75cff5bc9caebd7a6bee06695c2885f87c1012aff267a3381387ad88bc7f43d1c9928744a88c1d45ae2495c4b
SSDEEP

1536:Dk/xY0sllyGQMOtEvwDpjwycDtKkQZQRKb61vSbgZ3QzNKwU1:DW60sllyWOtEvwDpjwF85s

Score

7^/10

Malware Config

Targets

- Target
  
  2024-01-01_a8cc6ae17a80640733844d7e99f3905a_cryptolocker
- Size
  
  65KB
- MD5
  
  a8cc6ae17a80640733844d7e99f3905a
- SHA1
  
  14c1c8758873538fd56cd23afdfa09c3f948aa4a
- SHA256
  
  5064fc8a5cf7b83b6e0a8cea12a43611d43e718d45449fdadf491a89e57fe6b5
- SHA512
  
  ba6a5a6943bc99124040b842d835ffe6dd897dd75cff5bc9caebd7a6bee06695c2885f87c1012aff267a3381387ad88bc7f43d1c9928744a88c1d45ae2495c4b
- SSDEEP
  
  1536:Dk/xY0sllyGQMOtEvwDpjwycDtKkQZQRKb61vSbgZ3QzNKwU1:DW60sllyWOtEvwDpjwF85s
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2