aa85f59146d5e8fcd6eaceeb09b87792f4c4795c2da35913c43e46a2f44e7e7d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-01-11_0c2d6c900ada2d5ad67857c92ae1fadd_cryptolocker
Size

39KB
Sample

240112-gmavxagfg3
MD5

0c2d6c900ada2d5ad67857c92ae1fadd
SHA1

7e712b2b4e9ccae4765e63cf91e26a0cec8a3adf
SHA256

aa85f59146d5e8fcd6eaceeb09b87792f4c4795c2da35913c43e46a2f44e7e7d
SHA512

16c81ec24b2bf5efbb341be87b4caa6fa2107b3230880354e236ee1997b9c2d55602368c25a71d1efcdd21eac9ecd9c3cc3a339b67d8185455fc0467e8c5ab08
SSDEEP

384:60VkMq01bJ3wtEwPS8HLEh+Jagz+3be+26aIIcVRYpetOOtEvwDpjqIGRmdHzOOS:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/U

Score

7^/10

Malware Config

Targets

- Target
  
  2024-01-11_0c2d6c900ada2d5ad67857c92ae1fadd_cryptolocker
- Size
  
  39KB
- MD5
  
  0c2d6c900ada2d5ad67857c92ae1fadd
- SHA1
  
  7e712b2b4e9ccae4765e63cf91e26a0cec8a3adf
- SHA256
  
  aa85f59146d5e8fcd6eaceeb09b87792f4c4795c2da35913c43e46a2f44e7e7d
- SHA512
  
  16c81ec24b2bf5efbb341be87b4caa6fa2107b3230880354e236ee1997b9c2d55602368c25a71d1efcdd21eac9ecd9c3cc3a339b67d8185455fc0467e8c5ab08
- SSDEEP
  
  384:60VkMq01bJ3wtEwPS8HLEh+Jagz+3be+26aIIcVRYpetOOtEvwDpjqIGRmdHzOOS:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/U
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2