0cef0923037188536aac04c9066ead74f5c2bf3e95e79f92c5b11d6895e14d7c | Triage

Sharing

General

Target

2024-01-09_a7e519bca289a8268c89f2cdfd39df70_cryptolocker
Size

34KB
Sample

240110-gpzbaaaba4
MD5

a7e519bca289a8268c89f2cdfd39df70
SHA1

2f1b4ea9d9bce04939e13b359cea6e9048eedfd3
SHA256

0cef0923037188536aac04c9066ead74f5c2bf3e95e79f92c5b11d6895e14d7c
SHA512

d3c0614f1ac47410cae154ea39bc4e44b8153045451181b9cec35df59bdf2998fcc82d95d34fbc897ed21cee0022b1116364326f1d208c0d4adbd1dd063de918
SSDEEP

384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzogFzpjufAq18st8W:bAvJCYOOvbRPDEgXVFzpCYVG

Score

7^/10

Malware Config

Targets

- Target
  
  2024-01-09_a7e519bca289a8268c89f2cdfd39df70_cryptolocker
- Size
  
  34KB
- MD5
  
  a7e519bca289a8268c89f2cdfd39df70
- SHA1
  
  2f1b4ea9d9bce04939e13b359cea6e9048eedfd3
- SHA256
  
  0cef0923037188536aac04c9066ead74f5c2bf3e95e79f92c5b11d6895e14d7c
- SHA512
  
  d3c0614f1ac47410cae154ea39bc4e44b8153045451181b9cec35df59bdf2998fcc82d95d34fbc897ed21cee0022b1116364326f1d208c0d4adbd1dd063de918
- SSDEEP
  
  384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzogFzpjufAq18st8W:bAvJCYOOvbRPDEgXVFzpCYVG
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2