0d3127d833e9e507d1c104b7fc8886822d92aa1973b777a23b59fe236b555e19 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-01-06_9ba740be86e61456f472ec7ad2ca0da6_cryptolocker
Size

62KB
Sample

240107-pd66rafcb4
MD5

9ba740be86e61456f472ec7ad2ca0da6
SHA1

49ac4e024ca48cb39dbe61512bc90fcc74582b46
SHA256

0d3127d833e9e507d1c104b7fc8886822d92aa1973b777a23b59fe236b555e19
SHA512

6a829e6cf2713599d5c5113fc928cbe7d448fc85194389b32b47a6d1ed2fd32caaa5ff900946e5b598ddb336f9a50c2b61a2b78ce0ad06a9a93458a6cce4d9fa
SSDEEP

1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszsbKY1x/9lfL+gniDScZ:aq7tdgI2MyzNORQtOflIwoHNV2XBFV75

Score

7^/10

Malware Config

Targets

- Target
  
  2024-01-06_9ba740be86e61456f472ec7ad2ca0da6_cryptolocker
- Size
  
  62KB
- MD5
  
  9ba740be86e61456f472ec7ad2ca0da6
- SHA1
  
  49ac4e024ca48cb39dbe61512bc90fcc74582b46
- SHA256
  
  0d3127d833e9e507d1c104b7fc8886822d92aa1973b777a23b59fe236b555e19
- SHA512
  
  6a829e6cf2713599d5c5113fc928cbe7d448fc85194389b32b47a6d1ed2fd32caaa5ff900946e5b598ddb336f9a50c2b61a2b78ce0ad06a9a93458a6cce4d9fa
- SSDEEP
  
  1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszsbKY1x/9lfL+gniDScZ:aq7tdgI2MyzNORQtOflIwoHNV2XBFV75
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2