a091ffc684e0e636cf8913ef07e581a946a134d4af6b5fc2f8e716131f8a9cba | Triage

Sharing

General

Target

2024-01-09_960a2c9d6013a606884587d0574d0a22_cryptolocker
Size

96KB
Sample

240110-gn9qmagffk
MD5

960a2c9d6013a606884587d0574d0a22
SHA1

34488507df9745392c8aee1873b515193c05c3de
SHA256

a091ffc684e0e636cf8913ef07e581a946a134d4af6b5fc2f8e716131f8a9cba
SHA512

bb414f0a7f161f23f6e1c4dd876d761865107cfd71b5a3a8d75f21bd5e860ba84ffd779d930099e1b74ab404d311fe0c0fdcad04695adfdf603980af9f92c795
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJHlv/kH:xj+VGMOtEvwDpjubwQEIiVmkxv/6

Score

7^/10

Malware Config

Targets

- Target
  
  2024-01-09_960a2c9d6013a606884587d0574d0a22_cryptolocker
- Size
  
  96KB
- MD5
  
  960a2c9d6013a606884587d0574d0a22
- SHA1
  
  34488507df9745392c8aee1873b515193c05c3de
- SHA256
  
  a091ffc684e0e636cf8913ef07e581a946a134d4af6b5fc2f8e716131f8a9cba
- SHA512
  
  bb414f0a7f161f23f6e1c4dd876d761865107cfd71b5a3a8d75f21bd5e860ba84ffd779d930099e1b74ab404d311fe0c0fdcad04695adfdf603980af9f92c795
- SSDEEP
  
  768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7MpxRiWNa9mktJHlv/kH:xj+VGMOtEvwDpjubwQEIiVmkxv/6
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2