ecc11abe4a08a4e269017daaa8f9947e200570e25d43b84bdde52a2dde53bf11 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-06-04_1f1cd184faaf4cc2f1c845802591afdb_cryptolocker
Size

39KB
Sample

240604-e343ksda61
MD5

1f1cd184faaf4cc2f1c845802591afdb
SHA1

8ce27370bb33c03bd47e0c023b323afd481f1b0b
SHA256

ecc11abe4a08a4e269017daaa8f9947e200570e25d43b84bdde52a2dde53bf11
SHA512

0694e1a1d6aacc8aa6d361155621aebca8883bcc46c89831686737fdb8e8a57872a64a452e0eaf8983e5e542cd2afa45275ef52e1fc4aea0e730e2702d0bd682
SSDEEP

768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjLenU9h8:ZzFbxmLPWQMOtEvwDpjLeg8

Score

10^/10

Malware Config

Targets

- Target
  
  2024-06-04_1f1cd184faaf4cc2f1c845802591afdb_cryptolocker
- Size
  
  39KB
- MD5
  
  1f1cd184faaf4cc2f1c845802591afdb
- SHA1
  
  8ce27370bb33c03bd47e0c023b323afd481f1b0b
- SHA256
  
  ecc11abe4a08a4e269017daaa8f9947e200570e25d43b84bdde52a2dde53bf11
- SHA512
  
  0694e1a1d6aacc8aa6d361155621aebca8883bcc46c89831686737fdb8e8a57872a64a452e0eaf8983e5e542cd2afa45275ef52e1fc4aea0e730e2702d0bd682
- SSDEEP
  
  768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjLenU9h8:ZzFbxmLPWQMOtEvwDpjLeg8
Score

9^/10
- Detection of CryptoLocker Variants
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2