b831e3ca222c9a6c80af3605c2563b736f29f619903d4088d254b7e1411fe005 | Triage

Sharing

General

Target

2024-01-08_c8fafe71d73546282a0162fac37c5a5d_cryptolocker
Size

42KB
Sample

240109-hkpfysffej
MD5

c8fafe71d73546282a0162fac37c5a5d
SHA1

e40fbc145041c20817e74137d326cdb2edd9468e
SHA256

b831e3ca222c9a6c80af3605c2563b736f29f619903d4088d254b7e1411fe005
SHA512

fce111f13d099a6944b1aed23ac228ed538fc3a1f8c8ea6f0d97c63a9b96793fec8708ae910f57cfbf80ddbeff423032377694162d39ee8783c1f27972f7aa78
SSDEEP

768:b7o/2n1TCraU6GD1a4Xcn62TUdcuQlqJ51mwuepE:bc/y2lm6Y0AqJ51mwuX

Score

7^/10

Malware Config

Targets

- Target
  
  2024-01-08_c8fafe71d73546282a0162fac37c5a5d_cryptolocker
- Size
  
  42KB
- MD5
  
  c8fafe71d73546282a0162fac37c5a5d
- SHA1
  
  e40fbc145041c20817e74137d326cdb2edd9468e
- SHA256
  
  b831e3ca222c9a6c80af3605c2563b736f29f619903d4088d254b7e1411fe005
- SHA512
  
  fce111f13d099a6944b1aed23ac228ed538fc3a1f8c8ea6f0d97c63a9b96793fec8708ae910f57cfbf80ddbeff423032377694162d39ee8783c1f27972f7aa78
- SSDEEP
  
  768:b7o/2n1TCraU6GD1a4Xcn62TUdcuQlqJ51mwuepE:bc/y2lm6Y0AqJ51mwuX
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2