0966768cc976ec7ae09ff410b70b7be576a231efb79a322b34afbdaeb330a41f | Triage

Sharing

General

Target

2024-01-06_2c25ae32a3a5d27c5bab16b68233cd5f_cryptolocker
Size

36KB
Sample

240107-padp2adhf4
MD5

2c25ae32a3a5d27c5bab16b68233cd5f
SHA1

769de2000aaf9ae9a2b41e15b1af7768a5ab96b9
SHA256

0966768cc976ec7ae09ff410b70b7be576a231efb79a322b34afbdaeb330a41f
SHA512

d448c81444f261590eebbc2d022b83ab86b7db8786865b37a55d1fba34213912e5ed531febb3d92c308a1b66bbf6c879231c4a33ae41d3209a92c31c5a20ff44
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaac4HbM:X6QFElP6n+gJQMOtEvwDpjBsY4

Score

7^/10

Malware Config

Targets

- Target
  
  2024-01-06_2c25ae32a3a5d27c5bab16b68233cd5f_cryptolocker
- Size
  
  36KB
- MD5
  
  2c25ae32a3a5d27c5bab16b68233cd5f
- SHA1
  
  769de2000aaf9ae9a2b41e15b1af7768a5ab96b9
- SHA256
  
  0966768cc976ec7ae09ff410b70b7be576a231efb79a322b34afbdaeb330a41f
- SHA512
  
  d448c81444f261590eebbc2d022b83ab86b7db8786865b37a55d1fba34213912e5ed531febb3d92c308a1b66bbf6c879231c4a33ae41d3209a92c31c5a20ff44
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaac4HbM:X6QFElP6n+gJQMOtEvwDpjBsY4
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2