749bfa961315073bfe63644860213413308e239aa3b43d3eca386cb6d12acb79 | Triage

Sharing

General

Target

2024-01-01_d641dd10beff01013a7cb2372df2ef7e_cryptolocker
Size

28KB
Sample

240105-gj9j3adgan
MD5

d641dd10beff01013a7cb2372df2ef7e
SHA1

8d62e9fbb0ac1b3028dfa02899821e68b87eb737
SHA256

749bfa961315073bfe63644860213413308e239aa3b43d3eca386cb6d12acb79
SHA512

0c718b64f2f5df1c97f6860aed0b8a84cc1e324200e72ea1caaca333b86430c3942fadf42e7d58b0daf646ffd728fdba9c59e589313e6c17944d792333fc97b6
SSDEEP

384:bA74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUr766SJ1q:bA74zYcgT/Ekd0ryfjQRSW

Score

7^/10

Malware Config

Targets

- Target
  
  2024-01-01_d641dd10beff01013a7cb2372df2ef7e_cryptolocker
- Size
  
  28KB
- MD5
  
  d641dd10beff01013a7cb2372df2ef7e
- SHA1
  
  8d62e9fbb0ac1b3028dfa02899821e68b87eb737
- SHA256
  
  749bfa961315073bfe63644860213413308e239aa3b43d3eca386cb6d12acb79
- SHA512
  
  0c718b64f2f5df1c97f6860aed0b8a84cc1e324200e72ea1caaca333b86430c3942fadf42e7d58b0daf646ffd728fdba9c59e589313e6c17944d792333fc97b6
- SSDEEP
  
  384:bA74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUr766SJ1q:bA74zYcgT/Ekd0ryfjQRSW
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2