50cbe9e2c5ee2ebcd8c6deb684facaee412f3c884dee229a4d5cd3b38d233ae1 | Triage

Sharing

General

Target

2024-05-10_0694779a1ee30d4777c97278141f20aa_cryptolocker
Size

34KB
Sample

240510-rp9r5adf69
MD5

0694779a1ee30d4777c97278141f20aa
SHA1

ed42e017368ec84cd3a599deae31a3b0118eadaf
SHA256

50cbe9e2c5ee2ebcd8c6deb684facaee412f3c884dee229a4d5cd3b38d233ae1
SHA512

9e347c800997f2589b35a65a6fc0c0a14b2451fce304a8c7bd4700050c4368d8e46825b54a9ddbf8178346e290e39232bf06c91d6618cdddb12fe29a6a6e3147
SSDEEP

768:bxNQIE0eBhkL2Fo1CCwgfjOg9Arbkzos5MnO:bxNrC7kYo1Fxf2rYAO

Score

10^/10

Malware Config

Targets

- Target
  
  2024-05-10_0694779a1ee30d4777c97278141f20aa_cryptolocker
- Size
  
  34KB
- MD5
  
  0694779a1ee30d4777c97278141f20aa
- SHA1
  
  ed42e017368ec84cd3a599deae31a3b0118eadaf
- SHA256
  
  50cbe9e2c5ee2ebcd8c6deb684facaee412f3c884dee229a4d5cd3b38d233ae1
- SHA512
  
  9e347c800997f2589b35a65a6fc0c0a14b2451fce304a8c7bd4700050c4368d8e46825b54a9ddbf8178346e290e39232bf06c91d6618cdddb12fe29a6a6e3147
- SSDEEP
  
  768:bxNQIE0eBhkL2Fo1CCwgfjOg9Arbkzos5MnO:bxNrC7kYo1Fxf2rYAO
Score

9^/10
- Detection of CryptoLocker Variants
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2