1707b622d691c6317ff44d0e29b73e82369c5fcd1fbf090eca085947fe788225 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-04-24_fc7abad765a866009d454f3f84c73970_cryptolocker
Size

45KB
Sample

240424-pyel8sab21
MD5

fc7abad765a866009d454f3f84c73970
SHA1

07bf397ebcc43a1a1e9f6bfd862a61408db24b25
SHA256

1707b622d691c6317ff44d0e29b73e82369c5fcd1fbf090eca085947fe788225
SHA512

20cc78d4fa925a0bdd337f797770d238e6e7c88176bc1abefafaf092b5bec9e3d961032bd1f8175c948d861817d8c83c8649783514f04b49beee094c79f96b21
SSDEEP

768:bxNQIE0eBhkL2Fo1CCwgfjOg1tsJ6zeen754XcwxbFp1Yvb9wAv:bxNrC7kYo1Fxf3s05rwxbF7Yvbl

Score

10^/10

Malware Config

Targets

- Target
  
  2024-04-24_fc7abad765a866009d454f3f84c73970_cryptolocker
- Size
  
  45KB
- MD5
  
  fc7abad765a866009d454f3f84c73970
- SHA1
  
  07bf397ebcc43a1a1e9f6bfd862a61408db24b25
- SHA256
  
  1707b622d691c6317ff44d0e29b73e82369c5fcd1fbf090eca085947fe788225
- SHA512
  
  20cc78d4fa925a0bdd337f797770d238e6e7c88176bc1abefafaf092b5bec9e3d961032bd1f8175c948d861817d8c83c8649783514f04b49beee094c79f96b21
- SSDEEP
  
  768:bxNQIE0eBhkL2Fo1CCwgfjOg1tsJ6zeen754XcwxbFp1Yvb9wAv:bxNrC7kYo1Fxf3s05rwxbF7Yvbl
Score

9^/10
- Detection of CryptoLocker Variants
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2