c4726827b3852989fdc316b89a000f9510da16e2618dc6115788445e51461c0a | Triage

Sharing

General

Target

2024-05-22_86db2cad780d915b965ce6919ca99ace_cryptolocker
Size

42KB
Sample

240522-3efxvada6s
MD5

86db2cad780d915b965ce6919ca99ace
SHA1

7951ef1b2874c085e503f91a1d93b12df6d148ec
SHA256

c4726827b3852989fdc316b89a000f9510da16e2618dc6115788445e51461c0a
SHA512

01570a1e9f57bbb678d215e70af3614faea79c53df25a52913822512ef6e251376086bb75fc86759222cb62852e6e421ef922a34db8ab364f095dbc798cbbfb1
SSDEEP

768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjLeJAsKuDb7xLo:ZzFbxmLPWQMOtEvwDpjLeJAsKcb7e

Score

10^/10

Malware Config

Targets

- Target
  
  2024-05-22_86db2cad780d915b965ce6919ca99ace_cryptolocker
- Size
  
  42KB
- MD5
  
  86db2cad780d915b965ce6919ca99ace
- SHA1
  
  7951ef1b2874c085e503f91a1d93b12df6d148ec
- SHA256
  
  c4726827b3852989fdc316b89a000f9510da16e2618dc6115788445e51461c0a
- SHA512
  
  01570a1e9f57bbb678d215e70af3614faea79c53df25a52913822512ef6e251376086bb75fc86759222cb62852e6e421ef922a34db8ab364f095dbc798cbbfb1
- SSDEEP
  
  768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjLeJAsKuDb7xLo:ZzFbxmLPWQMOtEvwDpjLeJAsKcb7e
Score

9^/10
- Detection of CryptoLocker Variants
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2