dd7a0fabf586d7cd4152ec58a2d171cac1c4d9ac59d4431776ba16b7b291b3c1 | Triage

Sharing

General

Target

2024-01-11_c45ac7c72e04440dea3c7b750b91acdc_cryptolocker
Size

45KB
Sample

240112-gtfpqsaacl
MD5

c45ac7c72e04440dea3c7b750b91acdc
SHA1

a19788bdaf48f7541e60ac498146af13857b6f53
SHA256

dd7a0fabf586d7cd4152ec58a2d171cac1c4d9ac59d4431776ba16b7b291b3c1
SHA512

afe4f506c211108f98240e6d18db521d0c1eb624afeef62390e9f3ec4d29d36bd1943c9c0aab8b0506b94af657dd825dd2efbe0acb3400173a08878886b1d922
SSDEEP

768:wHGGaSawqnwjRQ6ESlmFOsPoOdQtOOtEvwDpjm6j4AYsqSh+DETkedmhTTHFAP:YGzl5wjRQBBOsP1QMOtEvwDpjl39+D+/

Score

7^/10

Malware Config

Targets

- Target
  
  2024-01-11_c45ac7c72e04440dea3c7b750b91acdc_cryptolocker
- Size
  
  45KB
- MD5
  
  c45ac7c72e04440dea3c7b750b91acdc
- SHA1
  
  a19788bdaf48f7541e60ac498146af13857b6f53
- SHA256
  
  dd7a0fabf586d7cd4152ec58a2d171cac1c4d9ac59d4431776ba16b7b291b3c1
- SHA512
  
  afe4f506c211108f98240e6d18db521d0c1eb624afeef62390e9f3ec4d29d36bd1943c9c0aab8b0506b94af657dd825dd2efbe0acb3400173a08878886b1d922
- SSDEEP
  
  768:wHGGaSawqnwjRQ6ESlmFOsPoOdQtOOtEvwDpjm6j4AYsqSh+DETkedmhTTHFAP:YGzl5wjRQBBOsP1QMOtEvwDpjl39+D+/
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2