d57a00ea28651fc99e22c1905cbcad5325af4bb2a0a50a46b85cb7f050d7deeb | Triage

Sharing

General

Target

2024-01-09_7c4953f83032797e4a913df7cf376e6a_cryptolocker
Size

74KB
Sample

240110-gndyysgcfq
MD5

7c4953f83032797e4a913df7cf376e6a
SHA1

82804b2358136eda36f84de93cd752262657910b
SHA256

d57a00ea28651fc99e22c1905cbcad5325af4bb2a0a50a46b85cb7f050d7deeb
SHA512

8adc33ea9457efae762e6e94988b7a688f078aa3627412a16c91a44a2fbc528b95e6ac822ebb4859410b733c4ed28a5e546ae9a009f87df7594495d211d7e875
SSDEEP

1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ3Kr:ZVxkGOtEvwDpjca8

Score

7^/10

Malware Config

Targets

- Target
  
  2024-01-09_7c4953f83032797e4a913df7cf376e6a_cryptolocker
- Size
  
  74KB
- MD5
  
  7c4953f83032797e4a913df7cf376e6a
- SHA1
  
  82804b2358136eda36f84de93cd752262657910b
- SHA256
  
  d57a00ea28651fc99e22c1905cbcad5325af4bb2a0a50a46b85cb7f050d7deeb
- SHA512
  
  8adc33ea9457efae762e6e94988b7a688f078aa3627412a16c91a44a2fbc528b95e6ac822ebb4859410b733c4ed28a5e546ae9a009f87df7594495d211d7e875
- SSDEEP
  
  1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ3Kr:ZVxkGOtEvwDpjca8
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2