08442abb36249b91e1e321aad4635ab55c91c1b3380573611a5a5f167dfcfdf9 | Triage

Sharing

General

Target

2024-02-03_0be230b32121e069fcd01c63a70f8eec_cryptolocker
Size

59KB
Sample

240203-dh2ahsfea4
MD5

0be230b32121e069fcd01c63a70f8eec
SHA1

e7e64febb2576a37dcfb212ac897b268132c178a
SHA256

08442abb36249b91e1e321aad4635ab55c91c1b3380573611a5a5f167dfcfdf9
SHA512

c4d0f5a3d5823690cee19ce3cda03831b5c9c44f1827046e4c3d538b5b67503772e23233f4e945b8c31f24e92536ba38e441e11bce41a119989a299fa7a169e7
SSDEEP

1536:btB9g/xtCSKfxLIc//Xr+/AO/kIZ3ft2nVuTKB6nggOlHdUHN5:btng54SMLr+/AO/kIhfoKMHd+

Score

10^/10

Malware Config

Targets

- Target
  
  2024-02-03_0be230b32121e069fcd01c63a70f8eec_cryptolocker
- Size
  
  59KB
- MD5
  
  0be230b32121e069fcd01c63a70f8eec
- SHA1
  
  e7e64febb2576a37dcfb212ac897b268132c178a
- SHA256
  
  08442abb36249b91e1e321aad4635ab55c91c1b3380573611a5a5f167dfcfdf9
- SHA512
  
  c4d0f5a3d5823690cee19ce3cda03831b5c9c44f1827046e4c3d538b5b67503772e23233f4e945b8c31f24e92536ba38e441e11bce41a119989a299fa7a169e7
- SSDEEP
  
  1536:btB9g/xtCSKfxLIc//Xr+/AO/kIZ3ft2nVuTKB6nggOlHdUHN5:btng54SMLr+/AO/kIhfoKMHd+
Score

9^/10
- Detection of CryptoLocker Variants
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2