a52d0b497fc207c6cfa51d6017b78928ae648e28e272bd0d02500ee4c46447d7 | Triage

Sharing

General

Target

2024-06-09_7122e5ea9886e72916b8c31a3c28b118_cryptolocker
Size

34KB
Sample

240609-c89txadb68
MD5

7122e5ea9886e72916b8c31a3c28b118
SHA1

8f60dc04ede76a87404891b537ac9981209fa0d4
SHA256

a52d0b497fc207c6cfa51d6017b78928ae648e28e272bd0d02500ee4c46447d7
SHA512

062560ec2f02efc97e25f258571aab06be01a0694857ff36036db34f75fd34149df240a996af80433b76bd5a1b0559b337efa17ebf245e65bf70d98d5e1f3eed
SSDEEP

768:bxNQIE0eBhkL2Fo1CCwgfjOg9Arbkzos5Pp7A:bxNrC7kYo1Fxf2rY1E

Score

10^/10

Malware Config

Targets

- Target
  
  2024-06-09_7122e5ea9886e72916b8c31a3c28b118_cryptolocker
- Size
  
  34KB
- MD5
  
  7122e5ea9886e72916b8c31a3c28b118
- SHA1
  
  8f60dc04ede76a87404891b537ac9981209fa0d4
- SHA256
  
  a52d0b497fc207c6cfa51d6017b78928ae648e28e272bd0d02500ee4c46447d7
- SHA512
  
  062560ec2f02efc97e25f258571aab06be01a0694857ff36036db34f75fd34149df240a996af80433b76bd5a1b0559b337efa17ebf245e65bf70d98d5e1f3eed
- SSDEEP
  
  768:bxNQIE0eBhkL2Fo1CCwgfjOg9Arbkzos5Pp7A:bxNrC7kYo1Fxf2rY1E
Score

9^/10
- Detection of CryptoLocker Variants
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2