7ea049392ae6c24171c4b704388f75832eed01bd8151e0b7f7f9aafdd067ea2e | Triage

Sharing

General

Target

2024-01-06_25ed969cb0face17ad7dca1c862946a3_cryptolocker
Size

60KB
Sample

240107-n96z7acgej
MD5

25ed969cb0face17ad7dca1c862946a3
SHA1

d1b1a8e5a439bf3ab29d3fda901c711ecb288a31
SHA256

7ea049392ae6c24171c4b704388f75832eed01bd8151e0b7f7f9aafdd067ea2e
SHA512

138989a36ecb1ae90495fa08fdd059959a99a81224271835377de10a5ed91addf9f1e71541529afba22b020ef978916e3fc2a9849594e836509173393e289781
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I52kGElUAf:6j+1NMOtEvwDpjr8ox8UDElbf

Score

7^/10

Malware Config

Targets

- Target
  
  2024-01-06_25ed969cb0face17ad7dca1c862946a3_cryptolocker
- Size
  
  60KB
- MD5
  
  25ed969cb0face17ad7dca1c862946a3
- SHA1
  
  d1b1a8e5a439bf3ab29d3fda901c711ecb288a31
- SHA256
  
  7ea049392ae6c24171c4b704388f75832eed01bd8151e0b7f7f9aafdd067ea2e
- SHA512
  
  138989a36ecb1ae90495fa08fdd059959a99a81224271835377de10a5ed91addf9f1e71541529afba22b020ef978916e3fc2a9849594e836509173393e289781
- SSDEEP
  
  768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I52kGElUAf:6j+1NMOtEvwDpjr8ox8UDElbf
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2