0b6f7a8d88350558f6e345dfd71cb54003d2409ab2b5225892141fc8a48273b7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-01-01_f2236d3c74ab6f91f48b920aea1eb564_cryptolocker
Size

27KB
Sample

240105-gk9apafaa4
MD5

f2236d3c74ab6f91f48b920aea1eb564
SHA1

91af1551998e36306f38745dcf0597dcf2aee635
SHA256

0b6f7a8d88350558f6e345dfd71cb54003d2409ab2b5225892141fc8a48273b7
SHA512

64e54a85cf48d4900251461ef39342deaa9b7086b606ccc887b93bad974f0c5ce82765d440eb1dcae262657f0d462bd64d01873c7a85118d6c8e66daa972d47b
SSDEEP

384:bmM0V/YPvnr801TRoUGPh4TKt6ATt1DqgPa3s/zzoCL:b7o/2n1TCraU6GD1a4XL

Score

7^/10

Malware Config

Targets

- Target
  
  2024-01-01_f2236d3c74ab6f91f48b920aea1eb564_cryptolocker
- Size
  
  27KB
- MD5
  
  f2236d3c74ab6f91f48b920aea1eb564
- SHA1
  
  91af1551998e36306f38745dcf0597dcf2aee635
- SHA256
  
  0b6f7a8d88350558f6e345dfd71cb54003d2409ab2b5225892141fc8a48273b7
- SHA512
  
  64e54a85cf48d4900251461ef39342deaa9b7086b606ccc887b93bad974f0c5ce82765d440eb1dcae262657f0d462bd64d01873c7a85118d6c8e66daa972d47b
- SSDEEP
  
  384:bmM0V/YPvnr801TRoUGPh4TKt6ATt1DqgPa3s/zzoCL:b7o/2n1TCraU6GD1a4XL
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2