c2f463fd7602e64105fe8e75235192467d3c0b8ad4ae77703162ad681bfec396 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-05-26_113302398121180fd6151af5d90978ed_cryptolocker
Size

32KB
Sample

240526-cvd53sbe2s
MD5

113302398121180fd6151af5d90978ed
SHA1

cd905e2ab31263ef34677e41ef5f82c1ebaf1074
SHA256

c2f463fd7602e64105fe8e75235192467d3c0b8ad4ae77703162ad681bfec396
SHA512

ff5beeedba31dca426e1b32b2a07823d53e28df4da2ccb12b533ae6f4c1803edf8061b0b580ea3669f599f7aed9c3e401ee23d319b0823acaebe4a6cd8421cbb
SSDEEP

384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzo6cJ3v7TIa:bAvJCYOOvbRPDEgXRcJr

Score

10^/10

Malware Config

Targets

- Target
  
  2024-05-26_113302398121180fd6151af5d90978ed_cryptolocker
- Size
  
  32KB
- MD5
  
  113302398121180fd6151af5d90978ed
- SHA1
  
  cd905e2ab31263ef34677e41ef5f82c1ebaf1074
- SHA256
  
  c2f463fd7602e64105fe8e75235192467d3c0b8ad4ae77703162ad681bfec396
- SHA512
  
  ff5beeedba31dca426e1b32b2a07823d53e28df4da2ccb12b533ae6f4c1803edf8061b0b580ea3669f599f7aed9c3e401ee23d319b0823acaebe4a6cd8421cbb
- SSDEEP
  
  384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzo6cJ3v7TIa:bAvJCYOOvbRPDEgXRcJr
Score

9^/10
- Detection of CryptoLocker Variants
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2