f326334361aef185745aa163f05c5302e9bceb7816e054654097a7d7b21af8b8 | Triage

Sharing

General

Target

2024-07-09_b60a9895a6c4462bd40c11532e814605_cryptolocker
Size

70KB
Sample

240709-a2swpsxcnm
MD5

b60a9895a6c4462bd40c11532e814605
SHA1

dc620d2028d205e4d826c08a028c963d8ac98168
SHA256

f326334361aef185745aa163f05c5302e9bceb7816e054654097a7d7b21af8b8
SHA512

6a4b87b74535967e1ecc5464a19218fcf59bc0fb54bac9d1408f99f03939726ef266b7d856b20d7aec1848a8dfa2a7d4e45135c1d0e24c25c40fe1f1de3a93cc
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I52kGEpE0P/xFI0tS3:6j+1NMOtEvwDpjr8ox8UDEpN/jhy

Score

7^/10

Malware Config

Targets

- Target
  
  2024-07-09_b60a9895a6c4462bd40c11532e814605_cryptolocker
- Size
  
  70KB
- MD5
  
  b60a9895a6c4462bd40c11532e814605
- SHA1
  
  dc620d2028d205e4d826c08a028c963d8ac98168
- SHA256
  
  f326334361aef185745aa163f05c5302e9bceb7816e054654097a7d7b21af8b8
- SHA512
  
  6a4b87b74535967e1ecc5464a19218fcf59bc0fb54bac9d1408f99f03939726ef266b7d856b20d7aec1848a8dfa2a7d4e45135c1d0e24c25c40fe1f1de3a93cc
- SSDEEP
  
  768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I52kGEpE0P/xFI0tS3:6j+1NMOtEvwDpjr8ox8UDEpN/jhy
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2