1c50d35e7f171d32313cf935e90a633701db825bc2a33eee93eaed41d0af51bd | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-05-22_cf593c4a2ed45ddff5e06debfce202c2_cryptolocker
Size

37KB
Sample

240522-2gjwvabe83
MD5

cf593c4a2ed45ddff5e06debfce202c2
SHA1

095d713d4668133ce84755f8e76b772ba0aab77d
SHA256

1c50d35e7f171d32313cf935e90a633701db825bc2a33eee93eaed41d0af51bd
SHA512

38dedae30b5422cc42c1e1498006d8d88c8a785e6845056ec6db00f304e34903952075917996a506076734e38459520da2a49e2de1b571eeb3d4cc0b364baa2d
SSDEEP

768:bAvJCYOOvbRPDEgXrNekd7l94i3pQheDI5:bAvJCF+RQgJeab4sbg

Score

10^/10

Malware Config

Targets

- Target
  
  2024-05-22_cf593c4a2ed45ddff5e06debfce202c2_cryptolocker
- Size
  
  37KB
- MD5
  
  cf593c4a2ed45ddff5e06debfce202c2
- SHA1
  
  095d713d4668133ce84755f8e76b772ba0aab77d
- SHA256
  
  1c50d35e7f171d32313cf935e90a633701db825bc2a33eee93eaed41d0af51bd
- SHA512
  
  38dedae30b5422cc42c1e1498006d8d88c8a785e6845056ec6db00f304e34903952075917996a506076734e38459520da2a49e2de1b571eeb3d4cc0b364baa2d
- SSDEEP
  
  768:bAvJCYOOvbRPDEgXrNekd7l94i3pQheDI5:bAvJCF+RQgJeab4sbg
Score

9^/10
- Detection of CryptoLocker Variants
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2