ed18ee0e6e5dfa4ea9cdc602623a83701fb31a2053e7e6e600f148bd3a5bb030 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-01-09_2662d95147016c2f6e2280caaf172ad4_cryptolocker
Size

51KB
Sample

240110-gkbdnafbfr
MD5

2662d95147016c2f6e2280caaf172ad4
SHA1

ecf3c2b84abc802bff1e965d32b32d7eb1098be8
SHA256

ed18ee0e6e5dfa4ea9cdc602623a83701fb31a2053e7e6e600f148bd3a5bb030
SHA512

8339e4a6fd48a953519acdf44aeb1554206996c3ac18ec0648961bea7282653668c9e906924b6ac47ed47500000a9271faf35ab6be98f8ef13dbd1824b262062
SSDEEP

768:bIDOw9UiaCHfjnE0Sfa7ilR0p9u6p4ICNBCXK9GJ:bIDOw9a0DwitDZzv

Score

7^/10

Malware Config

Targets

- Target
  
  2024-01-09_2662d95147016c2f6e2280caaf172ad4_cryptolocker
- Size
  
  51KB
- MD5
  
  2662d95147016c2f6e2280caaf172ad4
- SHA1
  
  ecf3c2b84abc802bff1e965d32b32d7eb1098be8
- SHA256
  
  ed18ee0e6e5dfa4ea9cdc602623a83701fb31a2053e7e6e600f148bd3a5bb030
- SHA512
  
  8339e4a6fd48a953519acdf44aeb1554206996c3ac18ec0648961bea7282653668c9e906924b6ac47ed47500000a9271faf35ab6be98f8ef13dbd1824b262062
- SSDEEP
  
  768:bIDOw9UiaCHfjnE0Sfa7ilR0p9u6p4ICNBCXK9GJ:bIDOw9a0DwitDZzv
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2