b8d70e5abe7d5ba5ebff7a321b7bd4499c6e1c8557c1ae49cdc86250bcd8e735 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-04-09_932459638d7989f5277cc3820a4730ac_cryptolocker
Size

44KB
Sample

240409-1gm3tsfh3y
MD5

932459638d7989f5277cc3820a4730ac
SHA1

0f2a1d17a493cbb2f413dedf1a256e3d77c6531e
SHA256

b8d70e5abe7d5ba5ebff7a321b7bd4499c6e1c8557c1ae49cdc86250bcd8e735
SHA512

95a3b473506616f05fb926bbf1cce088d8dad9da9c7fd2e593fa6124c41331f813cb56e6ddde0e23b65a4f8df2a1d44e4644e3e0cf325d16890b51a8e7dd4432
SSDEEP

768:bxNQIE0eBhkL2Fo1CCwgfjOg1tsJ6zeen754XcwxbFp1Yvb9wAF:bxNrC7kYo1Fxf3s05rwxbF7Yvbv

Score

10^/10

Malware Config

Targets

- Target
  
  2024-04-09_932459638d7989f5277cc3820a4730ac_cryptolocker
- Size
  
  44KB
- MD5
  
  932459638d7989f5277cc3820a4730ac
- SHA1
  
  0f2a1d17a493cbb2f413dedf1a256e3d77c6531e
- SHA256
  
  b8d70e5abe7d5ba5ebff7a321b7bd4499c6e1c8557c1ae49cdc86250bcd8e735
- SHA512
  
  95a3b473506616f05fb926bbf1cce088d8dad9da9c7fd2e593fa6124c41331f813cb56e6ddde0e23b65a4f8df2a1d44e4644e3e0cf325d16890b51a8e7dd4432
- SSDEEP
  
  768:bxNQIE0eBhkL2Fo1CCwgfjOg1tsJ6zeen754XcwxbFp1Yvb9wAF:bxNrC7kYo1Fxf3s05rwxbF7Yvbv
Score

9^/10
- Detection of CryptoLocker Variants
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2