4dbd56566b617384d5a5403d043d8682114dfa2accd08fc74aaf464b581b3231 | Triage

Sharing

General

Target

2024-01-06_bafac72ce03c0d5ccc8b877942fc7ece_cryptolocker
Size

37KB
Sample

240107-pe9m9sefdm
MD5

bafac72ce03c0d5ccc8b877942fc7ece
SHA1

c2144db574ebb5fde7ee4216876c98fa725b9f1a
SHA256

4dbd56566b617384d5a5403d043d8682114dfa2accd08fc74aaf464b581b3231
SHA512

be19d477aae5598c59aee7c30a1d2a06915ec6f9ae235a46866452d7d892145e8d92a51e17ae6a69399479b1077377c7b52785ad9e9a2305c653467cfec86bb8
SSDEEP

768:bgX4zYcgTEu6QOaryfjqDDw3sCu529hBg:bgGYcA/53GADw8Ch93g

Score

7^/10

Malware Config

Targets

- Target
  
  2024-01-06_bafac72ce03c0d5ccc8b877942fc7ece_cryptolocker
- Size
  
  37KB
- MD5
  
  bafac72ce03c0d5ccc8b877942fc7ece
- SHA1
  
  c2144db574ebb5fde7ee4216876c98fa725b9f1a
- SHA256
  
  4dbd56566b617384d5a5403d043d8682114dfa2accd08fc74aaf464b581b3231
- SHA512
  
  be19d477aae5598c59aee7c30a1d2a06915ec6f9ae235a46866452d7d892145e8d92a51e17ae6a69399479b1077377c7b52785ad9e9a2305c653467cfec86bb8
- SSDEEP
  
  768:bgX4zYcgTEu6QOaryfjqDDw3sCu529hBg:bgGYcA/53GADw8Ch93g
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2