188a8db2af44028de61ae4edf1476ebb64fa976e5c53359ece21bcbf571ff4fd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-03-16_bf618827fb10ca184c1ceafb2c347fd5_cryptolocker
Size

76KB
Sample

240316-fkwh6aed35
MD5

bf618827fb10ca184c1ceafb2c347fd5
SHA1

7f57eb71b2c4b91d62144c430fd43219ab580bf5
SHA256

188a8db2af44028de61ae4edf1476ebb64fa976e5c53359ece21bcbf571ff4fd
SHA512

ff8672e5f9356c00765630f173b5475c43be68208c3718b5117e43ef0726c49f1e6d64a5056a6a9cf188bdc46c3e50bc2d7d13f49b8928e8461812cf360ac825
SSDEEP

1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ3KujdR:ZVxkGOtEvwDpjcaL

Score

10^/10

Malware Config

Targets

- Target
  
  2024-03-16_bf618827fb10ca184c1ceafb2c347fd5_cryptolocker
- Size
  
  76KB
- MD5
  
  bf618827fb10ca184c1ceafb2c347fd5
- SHA1
  
  7f57eb71b2c4b91d62144c430fd43219ab580bf5
- SHA256
  
  188a8db2af44028de61ae4edf1476ebb64fa976e5c53359ece21bcbf571ff4fd
- SHA512
  
  ff8672e5f9356c00765630f173b5475c43be68208c3718b5117e43ef0726c49f1e6d64a5056a6a9cf188bdc46c3e50bc2d7d13f49b8928e8461812cf360ac825
- SSDEEP
  
  1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ3KujdR:ZVxkGOtEvwDpjcaL
Score

9^/10
- Detection of CryptoLocker Variants
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2