445bb7778eda8163bfef257de621db65e0553059e3f114ca018f7f0a0fd5f57e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-07-04_70efeba87789bba3cc80adf47cd8bf0d_cryptolocker
Size

53KB
Sample

240704-d1lb1sscjp
MD5

70efeba87789bba3cc80adf47cd8bf0d
SHA1

2c1adca01035c56630c599cb276a057b951fb026
SHA256

445bb7778eda8163bfef257de621db65e0553059e3f114ca018f7f0a0fd5f57e
SHA512

20821c30a9bb4e9197100f99c5a1da7850d18e5efd8037d9621da81c0982cb66d30d3131c715a9aa9b946cf2094fc09382eef61ff1b9192cb5717d32ce33174d
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/BtOOtEvwDpjBVaD3E09vaTCFWpzgVo2:X6QFElP6n+gJBMOtEvwDpjBtELVn

Score

7^/10

Malware Config

Targets

- Target
  
  2024-07-04_70efeba87789bba3cc80adf47cd8bf0d_cryptolocker
- Size
  
  53KB
- MD5
  
  70efeba87789bba3cc80adf47cd8bf0d
- SHA1
  
  2c1adca01035c56630c599cb276a057b951fb026
- SHA256
  
  445bb7778eda8163bfef257de621db65e0553059e3f114ca018f7f0a0fd5f57e
- SHA512
  
  20821c30a9bb4e9197100f99c5a1da7850d18e5efd8037d9621da81c0982cb66d30d3131c715a9aa9b946cf2094fc09382eef61ff1b9192cb5717d32ce33174d
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/BtOOtEvwDpjBVaD3E09vaTCFWpzgVo2:X6QFElP6n+gJBMOtEvwDpjBtELVn
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2