a08b7c81a3b0ad03546fa70032528aa6e1f4b37fe632f268d60fcb2df238c92a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-01-09_48caae919164d8a94886a957e0e2befa_cryptolocker
Size

124KB
Sample

240110-glh5wsffck
MD5

48caae919164d8a94886a957e0e2befa
SHA1

d089ae969d9c794cabbf4906ca08258ce5dbaf9d
SHA256

a08b7c81a3b0ad03546fa70032528aa6e1f4b37fe632f268d60fcb2df238c92a
SHA512

f332f8168f32696d57d6388eebd0433c5c0621a443048dbc49d9335fccf2bc42544a97a53115252dd3cff71400683d02d027f55464d53f41cf5ba71b4e15dd33
SSDEEP

1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfIuBKLUYOVbvh//Y:vCjsIOtEvwDpj5H9YvQd2Ri

Score

7^/10

Malware Config

Targets

- Target
  
  2024-01-09_48caae919164d8a94886a957e0e2befa_cryptolocker
- Size
  
  124KB
- MD5
  
  48caae919164d8a94886a957e0e2befa
- SHA1
  
  d089ae969d9c794cabbf4906ca08258ce5dbaf9d
- SHA256
  
  a08b7c81a3b0ad03546fa70032528aa6e1f4b37fe632f268d60fcb2df238c92a
- SHA512
  
  f332f8168f32696d57d6388eebd0433c5c0621a443048dbc49d9335fccf2bc42544a97a53115252dd3cff71400683d02d027f55464d53f41cf5ba71b4e15dd33
- SSDEEP
  
  1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfIuBKLUYOVbvh//Y:vCjsIOtEvwDpj5H9YvQd2Ri
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2