d63c590d13304e08762233f451beb269774b1c7c2db591da9d901d9ef7af4bde | Triage

Sharing

General

Target

2024-04-23_d1b0d09691a706f9b8eb4e33b473db92_cryptolocker
Size

72KB
Sample

240423-xtds5sba3z
MD5

d1b0d09691a706f9b8eb4e33b473db92
SHA1

af98f9e2218db9bbf37ef979749633522ef9d254
SHA256

d63c590d13304e08762233f451beb269774b1c7c2db591da9d901d9ef7af4bde
SHA512

d32ddd2327b0e58899249cd3c90023822d37665e44654fc1556bc9de846ed0e85124164da02cdd9adbc2ab4810dda3b0e00db4014d0c91b71077c599eb2e3692
SSDEEP

1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ3KUt:ZVxkGOtEvwDpjcaZ

Score

10^/10

Malware Config

Targets

- Target
  
  2024-04-23_d1b0d09691a706f9b8eb4e33b473db92_cryptolocker
- Size
  
  72KB
- MD5
  
  d1b0d09691a706f9b8eb4e33b473db92
- SHA1
  
  af98f9e2218db9bbf37ef979749633522ef9d254
- SHA256
  
  d63c590d13304e08762233f451beb269774b1c7c2db591da9d901d9ef7af4bde
- SHA512
  
  d32ddd2327b0e58899249cd3c90023822d37665e44654fc1556bc9de846ed0e85124164da02cdd9adbc2ab4810dda3b0e00db4014d0c91b71077c599eb2e3692
- SSDEEP
  
  1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ3KUt:ZVxkGOtEvwDpjcaZ
Score

9^/10
- Detection of CryptoLocker Variants
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2