a0e02f6e8909d46eb05910ce667affeaa2f471db9734e6c482fafdbe57665677 | Triage

Sharing

General

Target

2024-06-20_7d27e7da5548075260b0a1fb3a99071b_cryptolocker
Size

49KB
Sample

240620-nkyyaaygpn
MD5

7d27e7da5548075260b0a1fb3a99071b
SHA1

982c6d8dbb10fb646c02f2bc809651806899ea5f
SHA256

a0e02f6e8909d46eb05910ce667affeaa2f471db9734e6c482fafdbe57665677
SHA512

88d5e2f3d4002b16abdf64f71e1243f94591f8a0defaa3056de207c9e8b35fc49cb32ec316e62b4c89e61c56f25e216c9e017c626fbf85f3fbd51afcb14ba5da
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaaEqbIu556BlvsTz:X6QFElP6n+gJQMOtEvwDpjB0GIWSlvIz

Score

7^/10

Malware Config

Targets

- Target
  
  2024-06-20_7d27e7da5548075260b0a1fb3a99071b_cryptolocker
- Size
  
  49KB
- MD5
  
  7d27e7da5548075260b0a1fb3a99071b
- SHA1
  
  982c6d8dbb10fb646c02f2bc809651806899ea5f
- SHA256
  
  a0e02f6e8909d46eb05910ce667affeaa2f471db9734e6c482fafdbe57665677
- SHA512
  
  88d5e2f3d4002b16abdf64f71e1243f94591f8a0defaa3056de207c9e8b35fc49cb32ec316e62b4c89e61c56f25e216c9e017c626fbf85f3fbd51afcb14ba5da
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaaEqbIu556BlvsTz:X6QFElP6n+gJQMOtEvwDpjB0GIWSlvIz
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2