3bfd99267450597d1dad21b570f982612061130ef97d8454a3db63c888ef0b79 | Triage

Sharing

General

Target

2024-01-10_2e6fe62d0cfa3efba7a2ed88cb3adf2e_cryptolocker
Size

29KB
Sample

240111-ghb76sghh4
MD5

2e6fe62d0cfa3efba7a2ed88cb3adf2e
SHA1

26a5731e4fae64b23414728a949ad78545cb077d
SHA256

3bfd99267450597d1dad21b570f982612061130ef97d8454a3db63c888ef0b79
SHA512

a393d7160fdf32c640e0fb61ac45e2a777d10000a4bc1e702ccde905b10f34e8d4e7afad15b3f809f5ad21919952d0046dd02e755e8b32e219f81b1bfb39b730
SSDEEP

384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzo6cuahKe:bAvJCYOOvbRPDEgXRcOe

Score

7^/10

Malware Config

Targets

- Target
  
  2024-01-10_2e6fe62d0cfa3efba7a2ed88cb3adf2e_cryptolocker
- Size
  
  29KB
- MD5
  
  2e6fe62d0cfa3efba7a2ed88cb3adf2e
- SHA1
  
  26a5731e4fae64b23414728a949ad78545cb077d
- SHA256
  
  3bfd99267450597d1dad21b570f982612061130ef97d8454a3db63c888ef0b79
- SHA512
  
  a393d7160fdf32c640e0fb61ac45e2a777d10000a4bc1e702ccde905b10f34e8d4e7afad15b3f809f5ad21919952d0046dd02e755e8b32e219f81b1bfb39b730
- SSDEEP
  
  384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzo6cuahKe:bAvJCYOOvbRPDEgXRcOe
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2