807f9040879c3b90003129ba0bcc5b0b5f4ad52133dd29ff6d539581a01d3687 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-06-19_a3715ba0548a1c23a6581b227c816285_cryptolocker
Size

85KB
Sample

240619-s5sdfssgra
MD5

a3715ba0548a1c23a6581b227c816285
SHA1

79d99cd6359cf7d889098d261b04bef79f701231
SHA256

807f9040879c3b90003129ba0bcc5b0b5f4ad52133dd29ff6d539581a01d3687
SHA512

f0d277cdbff3adf08cc59b83644631ad6eebe63e3b4a0d31904b2e93d7e55cd5559905c44666f0cdd40183d06573c288cd62822e5249eec977a79c8664dc8d2c
SSDEEP

1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMrCsI:TCjsIOtEvwDpj5HE/OUHnSME

Score

7^/10

Malware Config

Targets

- Target
  
  2024-06-19_a3715ba0548a1c23a6581b227c816285_cryptolocker
- Size
  
  85KB
- MD5
  
  a3715ba0548a1c23a6581b227c816285
- SHA1
  
  79d99cd6359cf7d889098d261b04bef79f701231
- SHA256
  
  807f9040879c3b90003129ba0bcc5b0b5f4ad52133dd29ff6d539581a01d3687
- SHA512
  
  f0d277cdbff3adf08cc59b83644631ad6eebe63e3b4a0d31904b2e93d7e55cd5559905c44666f0cdd40183d06573c288cd62822e5249eec977a79c8664dc8d2c
- SSDEEP
  
  1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMrCsI:TCjsIOtEvwDpj5HE/OUHnSME
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2