3b6f987d477ccca9dc15860906ffb5e91e8b3ac3a1fe1140c60551296b4b89c8 | Triage

Sharing

General

Target

2024-01-09_ffe2d316ccefd48278bb7997b7e142b9_cryptolocker
Size

53KB
Sample

240110-gsxlvsbbe7
MD5

ffe2d316ccefd48278bb7997b7e142b9
SHA1

85769cd45626ad755bd3bb79d2e276243c4863e6
SHA256

3b6f987d477ccca9dc15860906ffb5e91e8b3ac3a1fe1140c60551296b4b89c8
SHA512

46d90559cfec3a26dae44c65e30068f12dc198e5677745b1ee99f2eee40da2b11bab221b5c5859315a092048aa96b3b7c933cebbc5316359dd0f82b2fcdf62e2
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZgBh8i6g7GoF9:xj+VGMOtEvwDpjubEgy9

Score

7^/10

Malware Config

Targets

- Target
  
  2024-01-09_ffe2d316ccefd48278bb7997b7e142b9_cryptolocker
- Size
  
  53KB
- MD5
  
  ffe2d316ccefd48278bb7997b7e142b9
- SHA1
  
  85769cd45626ad755bd3bb79d2e276243c4863e6
- SHA256
  
  3b6f987d477ccca9dc15860906ffb5e91e8b3ac3a1fe1140c60551296b4b89c8
- SHA512
  
  46d90559cfec3a26dae44c65e30068f12dc198e5677745b1ee99f2eee40da2b11bab221b5c5859315a092048aa96b3b7c933cebbc5316359dd0f82b2fcdf62e2
- SSDEEP
  
  768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZgBh8i6g7GoF9:xj+VGMOtEvwDpjubEgy9
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2