a7313f0aaae9996b06725f35437721d0e9095e57a01aa38d04a0db54bc901b41 | Triage

Sharing

General

Target

2024-01-09_8360b48378cfcb7fba3bcaf95efa3062_cryptolocker
Size

59KB
Sample

240110-gnmwvsgdel
MD5

8360b48378cfcb7fba3bcaf95efa3062
SHA1

0f71591b9ee78dfa7ba364f9eae9b7b72e1fb8f5
SHA256

a7313f0aaae9996b06725f35437721d0e9095e57a01aa38d04a0db54bc901b41
SHA512

659d215026bf51eabc5a16b2db23fcac2baa71887f2cbf4173cb18491ddac5280d59371b352a7abc0c65754c5a8ec522dbec39625a2a8a4ef7404f28956b6fac
SSDEEP

1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMH:TCjsIOtEvwDpj5HE/OUHnSMI

Score

7^/10

Malware Config

Targets

- Target
  
  2024-01-09_8360b48378cfcb7fba3bcaf95efa3062_cryptolocker
- Size
  
  59KB
- MD5
  
  8360b48378cfcb7fba3bcaf95efa3062
- SHA1
  
  0f71591b9ee78dfa7ba364f9eae9b7b72e1fb8f5
- SHA256
  
  a7313f0aaae9996b06725f35437721d0e9095e57a01aa38d04a0db54bc901b41
- SHA512
  
  659d215026bf51eabc5a16b2db23fcac2baa71887f2cbf4173cb18491ddac5280d59371b352a7abc0c65754c5a8ec522dbec39625a2a8a4ef7404f28956b6fac
- SSDEEP
  
  1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMH:TCjsIOtEvwDpj5HE/OUHnSMI
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2