8bb12791f48cbb9da250aba80a95bfe906efb3ee5ce3496ef29b13fa7e9daeb8 | Triage

Sharing

General

Target

2024-01-10_fcf5e8bef08661e2594337dd98789c95_cryptolocker
Size

88KB
Sample

240111-gpy1hsbca2
MD5

fcf5e8bef08661e2594337dd98789c95
SHA1

a48c88e73aca273459ff413c7e6af25f0cddd488
SHA256

8bb12791f48cbb9da250aba80a95bfe906efb3ee5ce3496ef29b13fa7e9daeb8
SHA512

f40f033a5e17f45127a64bdf7fae13475e958ceb78b4cc26f8cf5b9070f82afbc34028125ee7173c056ebfd6f93fe4ce55e85b379c317b5106f1c99b14427774
SSDEEP

1536:vj+jsMQMOtEvwDpj5H8u8rBN6nqEZNi1OkQB:vCjsIOtEvwDpj5H8zPsP

Score

7^/10

Malware Config

Targets

- Target
  
  2024-01-10_fcf5e8bef08661e2594337dd98789c95_cryptolocker
- Size
  
  88KB
- MD5
  
  fcf5e8bef08661e2594337dd98789c95
- SHA1
  
  a48c88e73aca273459ff413c7e6af25f0cddd488
- SHA256
  
  8bb12791f48cbb9da250aba80a95bfe906efb3ee5ce3496ef29b13fa7e9daeb8
- SHA512
  
  f40f033a5e17f45127a64bdf7fae13475e958ceb78b4cc26f8cf5b9070f82afbc34028125ee7173c056ebfd6f93fe4ce55e85b379c317b5106f1c99b14427774
- SSDEEP
  
  1536:vj+jsMQMOtEvwDpj5H8u8rBN6nqEZNi1OkQB:vCjsIOtEvwDpj5H8zPsP
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2