b9d5f2b999247a3e020868ddf5003184ba14e1d3c104f2c4e65ef7455e37127b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-01-09_44426bdf52ee253ff4c7ac767d65c519_cryptolocker
Size

38KB
Sample

240110-glcccafegm
MD5

44426bdf52ee253ff4c7ac767d65c519
SHA1

0365f0f47cd7b90cdc391f73f04f86bab136e3c9
SHA256

b9d5f2b999247a3e020868ddf5003184ba14e1d3c104f2c4e65ef7455e37127b
SHA512

01d2884ebb08db09d32e886ccd123885c7eaa3ca0540703235a2bd70b07f61230e0d895fd167cd72fb25a9db036b570eac15af444118ba86bfdc363e95f4b579
SSDEEP

768:bgX4zYcgTEu6QOaryfjqDDw3sCu5b+rc5x:bgGYcA/53GADw8Clrc/

Score

7^/10

Malware Config

Targets

- Target
  
  2024-01-09_44426bdf52ee253ff4c7ac767d65c519_cryptolocker
- Size
  
  38KB
- MD5
  
  44426bdf52ee253ff4c7ac767d65c519
- SHA1
  
  0365f0f47cd7b90cdc391f73f04f86bab136e3c9
- SHA256
  
  b9d5f2b999247a3e020868ddf5003184ba14e1d3c104f2c4e65ef7455e37127b
- SHA512
  
  01d2884ebb08db09d32e886ccd123885c7eaa3ca0540703235a2bd70b07f61230e0d895fd167cd72fb25a9db036b570eac15af444118ba86bfdc363e95f4b579
- SSDEEP
  
  768:bgX4zYcgTEu6QOaryfjqDDw3sCu5b+rc5x:bgGYcA/53GADw8Clrc/
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2