aec72cc8c13fae473523aa1cdabf6a0f0c6df6c14c116f7275c7e1a36e956ecf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-01-09_2efd2d9ca5ca72dcf95e99571c54d3b3_cryptolocker
Size

37KB
Sample

240110-gkk8vsfcfl
MD5

2efd2d9ca5ca72dcf95e99571c54d3b3
SHA1

ddc8089b3ab83317073792ea01fc281e18e62b52
SHA256

aec72cc8c13fae473523aa1cdabf6a0f0c6df6c14c116f7275c7e1a36e956ecf
SHA512

be119f20a8f2ba44474db7edbb56fbe69d404801352e4ce76929a886a975b8eaf6f8b6d35f9441ea167b25f51a298e0eb74ce28ae159718bdb08a97c38f2b584
SSDEEP

384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzoiM8Nekdvjl9V50i3Nb/mViv:bAvJCYOOvbRPDEgXrNekd7l94i3p/cvg

Score

7^/10

Malware Config

Targets

- Target
  
  2024-01-09_2efd2d9ca5ca72dcf95e99571c54d3b3_cryptolocker
- Size
  
  37KB
- MD5
  
  2efd2d9ca5ca72dcf95e99571c54d3b3
- SHA1
  
  ddc8089b3ab83317073792ea01fc281e18e62b52
- SHA256
  
  aec72cc8c13fae473523aa1cdabf6a0f0c6df6c14c116f7275c7e1a36e956ecf
- SHA512
  
  be119f20a8f2ba44474db7edbb56fbe69d404801352e4ce76929a886a975b8eaf6f8b6d35f9441ea167b25f51a298e0eb74ce28ae159718bdb08a97c38f2b584
- SSDEEP
  
  384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzoiM8Nekdvjl9V50i3Nb/mViv:bAvJCYOOvbRPDEgXrNekd7l94i3p/cvg
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2