93c095fe9665df3979ee2f9f460ea5aa343e45a11ef8d55754c3bd3dcad11542 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-06-03_a0c947078ef78a2d5fa0e119cb4aec4a_cryptolocker
Size

37KB
Sample

240603-ed7geabf59
MD5

a0c947078ef78a2d5fa0e119cb4aec4a
SHA1

260d3cfa01a5e9ace490451295e2e61d49215a92
SHA256

93c095fe9665df3979ee2f9f460ea5aa343e45a11ef8d55754c3bd3dcad11542
SHA512

bf1c425c6dd761b832fe11bbd9daec07cab7506fa34d9d7e8c29f40acfaf3e85306d2c2a726dcdfbc39b7cd748cdebd8f7bfdd62ae13c641f0c21faa640caf35
SSDEEP

768:bAvJCYOOvbRPDEgXrNekd7l94i3pQheDOk:bAvJCF+RQgJeab4sb9

Score

10^/10

Malware Config

Targets

- Target
  
  2024-06-03_a0c947078ef78a2d5fa0e119cb4aec4a_cryptolocker
- Size
  
  37KB
- MD5
  
  a0c947078ef78a2d5fa0e119cb4aec4a
- SHA1
  
  260d3cfa01a5e9ace490451295e2e61d49215a92
- SHA256
  
  93c095fe9665df3979ee2f9f460ea5aa343e45a11ef8d55754c3bd3dcad11542
- SHA512
  
  bf1c425c6dd761b832fe11bbd9daec07cab7506fa34d9d7e8c29f40acfaf3e85306d2c2a726dcdfbc39b7cd748cdebd8f7bfdd62ae13c641f0c21faa640caf35
- SSDEEP
  
  768:bAvJCYOOvbRPDEgXrNekd7l94i3pQheDOk:bAvJCF+RQgJeab4sb9
Score

9^/10
- Detection of CryptoLocker Variants
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2