3b1c73c54ab60e59eddc00f2906ebb4aa701b25afc67b11c05b070cc0a16560d | Triage

Sharing

General

Target

2024-02-01_666a09c119f4824554f09833e4d944bd_cryptolocker
Size

37KB
Sample

240201-3d7deaagfj
MD5

666a09c119f4824554f09833e4d944bd
SHA1

ba973c233330ae79e581d56f2db0021c21498ced
SHA256

3b1c73c54ab60e59eddc00f2906ebb4aa701b25afc67b11c05b070cc0a16560d
SHA512

62add2c8cda57445ea5b94cd2a78e908b123996a1659f5b92fe73fcf6fcae63497462c8454aae596d84e514a183d15f6e5f29022159971765936bbc512e316ee
SSDEEP

384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzoiM8Nekdvjl9V50i3NbF043:bAvJCYOOvbRPDEgXrNekd7l94i3pF043

Score

10^/10

Malware Config

Targets

- Target
  
  2024-02-01_666a09c119f4824554f09833e4d944bd_cryptolocker
- Size
  
  37KB
- MD5
  
  666a09c119f4824554f09833e4d944bd
- SHA1
  
  ba973c233330ae79e581d56f2db0021c21498ced
- SHA256
  
  3b1c73c54ab60e59eddc00f2906ebb4aa701b25afc67b11c05b070cc0a16560d
- SHA512
  
  62add2c8cda57445ea5b94cd2a78e908b123996a1659f5b92fe73fcf6fcae63497462c8454aae596d84e514a183d15f6e5f29022159971765936bbc512e316ee
- SSDEEP
  
  384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzoiM8Nekdvjl9V50i3NbF043:bAvJCYOOvbRPDEgXrNekd7l94i3pF043
Score

9^/10
- Detection of CryptoLocker Variants
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2