0d1283e77e28e19372c8b983feb6e2da1c816ad6ab7842ec61cf836fa6f6d7bb | Triage

Sharing

General

Target

2024-01-06_01e36ef0d589ef82fa5b3c594bc604ed_cryptolocker
Size

70KB
Sample

240107-n83ldaddg2
MD5

01e36ef0d589ef82fa5b3c594bc604ed
SHA1

5dbd0023353574bba10299d10f45c976ba543c55
SHA256

0d1283e77e28e19372c8b983feb6e2da1c816ad6ab7842ec61cf836fa6f6d7bb
SHA512

795f2f1804d43a12977b8368f3098fedc4d90217b93dfd127c0b3594906912d12c43ec8d582c02f803b456319fe4ef3356a2adcfd246ba57d99af9883c751b82
SSDEEP

1536:X6QFElP6n+gJQMOtEvwDpjBZYTjipvF2bx1f:X6a+SOtEvwDpjBZYvQd2f

Score

7^/10

Malware Config

Targets

- Target
  
  2024-01-06_01e36ef0d589ef82fa5b3c594bc604ed_cryptolocker
- Size
  
  70KB
- MD5
  
  01e36ef0d589ef82fa5b3c594bc604ed
- SHA1
  
  5dbd0023353574bba10299d10f45c976ba543c55
- SHA256
  
  0d1283e77e28e19372c8b983feb6e2da1c816ad6ab7842ec61cf836fa6f6d7bb
- SHA512
  
  795f2f1804d43a12977b8368f3098fedc4d90217b93dfd127c0b3594906912d12c43ec8d582c02f803b456319fe4ef3356a2adcfd246ba57d99af9883c751b82
- SSDEEP
  
  1536:X6QFElP6n+gJQMOtEvwDpjBZYTjipvF2bx1f:X6a+SOtEvwDpjBZYvQd2f
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2