42b3bbf291176a6e752c5018dc73c26dae40eac613472bc7c97f39a1ade27825 | Triage

Sharing

General

Target

2024-01-10_d1a21fe5b228b6f41c252d6433fefe96_cryptolocker
Size

48KB
Sample

240111-gnk29saadn
MD5

d1a21fe5b228b6f41c252d6433fefe96
SHA1

b0dc359cac6271e193fc2259160a77420f9b9aec
SHA256

42b3bbf291176a6e752c5018dc73c26dae40eac613472bc7c97f39a1ade27825
SHA512

7be03c392d2ddc9dfa828062a15a1b249a864f658f0eeca5c83bb26be4ff173fe1c1746a34efb397eb43bd3963243dbb66e3a720656d48e2c31965f1bf8e24ae
SSDEEP

768:79inqyNR/QtOOtEvwDpjBK/rJ+Nw8qn8pKI941:79mqyNhQMOtEvwDpjBxe8TpX9o

Score

7^/10

Malware Config

Targets

- Target
  
  2024-01-10_d1a21fe5b228b6f41c252d6433fefe96_cryptolocker
- Size
  
  48KB
- MD5
  
  d1a21fe5b228b6f41c252d6433fefe96
- SHA1
  
  b0dc359cac6271e193fc2259160a77420f9b9aec
- SHA256
  
  42b3bbf291176a6e752c5018dc73c26dae40eac613472bc7c97f39a1ade27825
- SHA512
  
  7be03c392d2ddc9dfa828062a15a1b249a864f658f0eeca5c83bb26be4ff173fe1c1746a34efb397eb43bd3963243dbb66e3a720656d48e2c31965f1bf8e24ae
- SSDEEP
  
  768:79inqyNR/QtOOtEvwDpjBK/rJ+Nw8qn8pKI941:79mqyNhQMOtEvwDpjBxe8TpX9o
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2