2fdc90fd898ec82a70d60c80f7202cc965ed173ed8664ddd2d615bccf891e648 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-01-10_d8dc13594fd71c4c2e716e63275b2be9_cryptolocker
Size

77KB
Sample

240111-gnsr4sabaj
MD5

d8dc13594fd71c4c2e716e63275b2be9
SHA1

bd0872b3f2f3abc3bf8e74120635a78fc7517b99
SHA256

2fdc90fd898ec82a70d60c80f7202cc965ed173ed8664ddd2d615bccf891e648
SHA512

6565ba55ee7d0753f88903d397814f59895e896e74730a00d9884c851fb137263b474cd778af4b80eef91eadd2a3713f41a28bb5c108df5343116e29a64ad3a6
SSDEEP

1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfIufw:vCjsIOtEvwDpj5H9YvQd2E

Score

7^/10

Malware Config

Targets

- Target
  
  2024-01-10_d8dc13594fd71c4c2e716e63275b2be9_cryptolocker
- Size
  
  77KB
- MD5
  
  d8dc13594fd71c4c2e716e63275b2be9
- SHA1
  
  bd0872b3f2f3abc3bf8e74120635a78fc7517b99
- SHA256
  
  2fdc90fd898ec82a70d60c80f7202cc965ed173ed8664ddd2d615bccf891e648
- SHA512
  
  6565ba55ee7d0753f88903d397814f59895e896e74730a00d9884c851fb137263b474cd778af4b80eef91eadd2a3713f41a28bb5c108df5343116e29a64ad3a6
- SSDEEP
  
  1536:vj+jsMQMOtEvwDpj5HwYYTjipvF2hBfIufw:vCjsIOtEvwDpj5H9YvQd2E
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2