4e31b3d06ca79825dc5821a4bb70722fdbc293a25c0382c8a98f228f6b347a4f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-01-09_5fe716e7e761fea4f8cbe0ed56ef1458_cryptolocker
Size

38KB
Sample

240110-gmaj5sfhej
MD5

5fe716e7e761fea4f8cbe0ed56ef1458
SHA1

4bc5dbb85fe3495b66ce7211f8bcee9c8e6f0782
SHA256

4e31b3d06ca79825dc5821a4bb70722fdbc293a25c0382c8a98f228f6b347a4f
SHA512

59f3b35502d425f66a0919e4d94e2104cac2dbe60291f264e411b621719873c52eebcd00e3a80c98dd613890c7a20158de43975780698dd144769f4d65178334
SSDEEP

384:bgX4uGLLQRcsdeQ7/nQu63Ag7YmecFanrlwfjDUkKDfWf0w3sp8u5cZ95d9hV3:bgX4zYcgTEu6QOaryfjqDDw3sCu529h9

Score

7^/10

Malware Config

Targets

- Target
  
  2024-01-09_5fe716e7e761fea4f8cbe0ed56ef1458_cryptolocker
- Size
  
  38KB
- MD5
  
  5fe716e7e761fea4f8cbe0ed56ef1458
- SHA1
  
  4bc5dbb85fe3495b66ce7211f8bcee9c8e6f0782
- SHA256
  
  4e31b3d06ca79825dc5821a4bb70722fdbc293a25c0382c8a98f228f6b347a4f
- SHA512
  
  59f3b35502d425f66a0919e4d94e2104cac2dbe60291f264e411b621719873c52eebcd00e3a80c98dd613890c7a20158de43975780698dd144769f4d65178334
- SSDEEP
  
  384:bgX4uGLLQRcsdeQ7/nQu63Ag7YmecFanrlwfjDUkKDfWf0w3sp8u5cZ95d9hV3:bgX4zYcgTEu6QOaryfjqDDw3sCu529h9
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2