bdac9df391aa16ff3a5672df1bc847c2d22e056703044d9a9a16f4c0fb5fa783 | Triage

Sharing

General

Target

2024-01-08_c1f40586dcae67790590e23ada9ad1ef_cryptolocker
Size

37KB
Sample

240109-hkexhsfeam
MD5

c1f40586dcae67790590e23ada9ad1ef
SHA1

5b840fa377b11b6b0a1850d58557502bcaaa67a6
SHA256

bdac9df391aa16ff3a5672df1bc847c2d22e056703044d9a9a16f4c0fb5fa783
SHA512

91794fcfcda8f6635c96cd0e83d692cb714212d410570f969730b5f2a838dc89c63fbcbbf453b3f2d0ced18b4136a889208d135df28a19d6438702962198ba89
SSDEEP

768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjLenQLN:ZzFbxmLPWQMOtEvwDpjLeUN

Score

7^/10

Malware Config

Targets

- Target
  
  2024-01-08_c1f40586dcae67790590e23ada9ad1ef_cryptolocker
- Size
  
  37KB
- MD5
  
  c1f40586dcae67790590e23ada9ad1ef
- SHA1
  
  5b840fa377b11b6b0a1850d58557502bcaaa67a6
- SHA256
  
  bdac9df391aa16ff3a5672df1bc847c2d22e056703044d9a9a16f4c0fb5fa783
- SHA512
  
  91794fcfcda8f6635c96cd0e83d692cb714212d410570f969730b5f2a838dc89c63fbcbbf453b3f2d0ced18b4136a889208d135df28a19d6438702962198ba89
- SSDEEP
  
  768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjLenQLN:ZzFbxmLPWQMOtEvwDpjLeUN
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2