7f1d688dca06794f7bab7882a8f68fc1f5f362ef1d69a6dbf6c7ab38ccfa7eae | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-01-08_876a5aeaab6d4a22d31cd8ddd9261184_cryptolocker
Size

78KB
Sample

240109-hhb3vadhgj
MD5

876a5aeaab6d4a22d31cd8ddd9261184
SHA1

6064cbabecf5252e9b398dd0f6a184405ff0106b
SHA256

7f1d688dca06794f7bab7882a8f68fc1f5f362ef1d69a6dbf6c7ab38ccfa7eae
SHA512

43d6e965dcd713fde6c7b6d8c3b2b42a86ffd7b2c33978e1080bebf419679f87c170ff00b83ee88f934de77cf540710bf60fa39a17ccc36b6eaaf1856b31abf7
SSDEEP

1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMk:TCjsIOtEvwDpj5HE/OUHnSM2

Score

7^/10

Malware Config

Targets

- Target
  
  2024-01-08_876a5aeaab6d4a22d31cd8ddd9261184_cryptolocker
- Size
  
  78KB
- MD5
  
  876a5aeaab6d4a22d31cd8ddd9261184
- SHA1
  
  6064cbabecf5252e9b398dd0f6a184405ff0106b
- SHA256
  
  7f1d688dca06794f7bab7882a8f68fc1f5f362ef1d69a6dbf6c7ab38ccfa7eae
- SHA512
  
  43d6e965dcd713fde6c7b6d8c3b2b42a86ffd7b2c33978e1080bebf419679f87c170ff00b83ee88f934de77cf540710bf60fa39a17ccc36b6eaaf1856b31abf7
- SSDEEP
  
  1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMk:TCjsIOtEvwDpj5HE/OUHnSM2
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2