a6962899f0ecc71787970bf635d23363835c7801242a57d8de63134d869cc5ae | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-06-14_33a5d31a98252e33505837588cad0d9d_cryptolocker
Size

45KB
Sample

240614-x43v1ssgpf
MD5

33a5d31a98252e33505837588cad0d9d
SHA1

68ac4212fa941c51354a77337c72fd9395f72e46
SHA256

a6962899f0ecc71787970bf635d23363835c7801242a57d8de63134d869cc5ae
SHA512

c4174104fd5a74776e3069aa6d9e74ee21640fca0a000f117abaa56f66ccd504a30cbf252cb89fe69be5a5e4a99763f381ae60e29f1b4e2241d8548e1f075b8b
SSDEEP

768:bao/2n1TCraU6GD1a4X1XOQ69zbjlAAX5e9zU:bF/y2lFizbR9XwzU

Score

10^/10

Malware Config

Targets

- Target
  
  2024-06-14_33a5d31a98252e33505837588cad0d9d_cryptolocker
- Size
  
  45KB
- MD5
  
  33a5d31a98252e33505837588cad0d9d
- SHA1
  
  68ac4212fa941c51354a77337c72fd9395f72e46
- SHA256
  
  a6962899f0ecc71787970bf635d23363835c7801242a57d8de63134d869cc5ae
- SHA512
  
  c4174104fd5a74776e3069aa6d9e74ee21640fca0a000f117abaa56f66ccd504a30cbf252cb89fe69be5a5e4a99763f381ae60e29f1b4e2241d8548e1f075b8b
- SSDEEP
  
  768:bao/2n1TCraU6GD1a4X1XOQ69zbjlAAX5e9zU:bF/y2lFizbR9XwzU
Score

9^/10
- Detection of CryptoLocker Variants
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2