c36758d98ada5f3d44d8eac634478a1878cee228e7f65089289d32abdd36223d | Triage

Sharing

General

Target

2024-01-06_b6fb8783fe4ffa20e0e574604b7cd8df_cryptolocker
Size

60KB
Sample

240107-pe5djsfeh4
MD5

b6fb8783fe4ffa20e0e574604b7cd8df
SHA1

9ff0be0d95c1885a9cad842aa8691c7f2a4dabe9
SHA256

c36758d98ada5f3d44d8eac634478a1878cee228e7f65089289d32abdd36223d
SHA512

9f86222f304d5741aca3d9f576284ddd3c39dc3c2aecb66803dcd93f53f1baf44a5cf680273dd1c5937f346a6a81887434f253344a6fee5029361f64a27a2338
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I52kGElUAl:6j+1NMOtEvwDpjr8ox8UDElbl

Score

7^/10

Malware Config

Targets

- Target
  
  2024-01-06_b6fb8783fe4ffa20e0e574604b7cd8df_cryptolocker
- Size
  
  60KB
- MD5
  
  b6fb8783fe4ffa20e0e574604b7cd8df
- SHA1
  
  9ff0be0d95c1885a9cad842aa8691c7f2a4dabe9
- SHA256
  
  c36758d98ada5f3d44d8eac634478a1878cee228e7f65089289d32abdd36223d
- SHA512
  
  9f86222f304d5741aca3d9f576284ddd3c39dc3c2aecb66803dcd93f53f1baf44a5cf680273dd1c5937f346a6a81887434f253344a6fee5029361f64a27a2338
- SSDEEP
  
  768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I52kGElUAl:6j+1NMOtEvwDpjr8ox8UDElbl
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2