fca8268ba17843a267198d6ef5b487dbb70c65d41bec9b81983c43630091bee8 | Triage

Sharing

General

Target

2024-01-08_030661028035c81fbb08954f85c42057_cryptolocker
Size

92KB
Sample

240109-hct2gaaffj
MD5

030661028035c81fbb08954f85c42057
SHA1

a68769d4d81ed1e76637b5f9f01ed63903890d56
SHA256

fca8268ba17843a267198d6ef5b487dbb70c65d41bec9b81983c43630091bee8
SHA512

0f85b4eb0d4c85dcfa4833fd12e7d51d0419893bce4a5d0bbfab136610f0bbdb43ec00df1883a69b77740685fe50189b33f48bb3c13ad57fdd7dedc0e64656d2
SSDEEP

1536:26QFElP6n+gBQMOtEvwDpjQGYQbN/PKwNC7:26a+2OtEvwDpjtzQ

Score

7^/10

Malware Config

Targets

- Target
  
  2024-01-08_030661028035c81fbb08954f85c42057_cryptolocker
- Size
  
  92KB
- MD5
  
  030661028035c81fbb08954f85c42057
- SHA1
  
  a68769d4d81ed1e76637b5f9f01ed63903890d56
- SHA256
  
  fca8268ba17843a267198d6ef5b487dbb70c65d41bec9b81983c43630091bee8
- SHA512
  
  0f85b4eb0d4c85dcfa4833fd12e7d51d0419893bce4a5d0bbfab136610f0bbdb43ec00df1883a69b77740685fe50189b33f48bb3c13ad57fdd7dedc0e64656d2
- SSDEEP
  
  1536:26QFElP6n+gBQMOtEvwDpjQGYQbN/PKwNC7:26a+2OtEvwDpjtzQ
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2