6aa380f9dedc41d7bb490e4625db1fbbfb5df5e7ea113c316e2c6f882d688d61 | Triage

Sharing

General

Target

2024-07-09_0a294bd03becd2e0b798fadd2b08bd0d_cryptolocker
Size

72KB
Sample

240709-apf2daygmb
MD5

0a294bd03becd2e0b798fadd2b08bd0d
SHA1

6def42449905e3c476abfaa0f08e6e69ddbd91f7
SHA256

6aa380f9dedc41d7bb490e4625db1fbbfb5df5e7ea113c316e2c6f882d688d61
SHA512

9cfd2ff40f71767b0810274e9ce2235ccade71c16005fe9876d3c2010d758daacdb9652b290b1db955a9de49133f4dbec73e5f8f3b5abbce5cd0f6578d43d295
SSDEEP

1536:Dk/xY0sllyGQMOtEvwDpjwycDtKkQZQRKb61vSbgZ3QzNKUNZOr:DW60sllyWOtEvwDpjwF85k

Score

7^/10

Malware Config

Targets

- Target
  
  2024-07-09_0a294bd03becd2e0b798fadd2b08bd0d_cryptolocker
- Size
  
  72KB
- MD5
  
  0a294bd03becd2e0b798fadd2b08bd0d
- SHA1
  
  6def42449905e3c476abfaa0f08e6e69ddbd91f7
- SHA256
  
  6aa380f9dedc41d7bb490e4625db1fbbfb5df5e7ea113c316e2c6f882d688d61
- SHA512
  
  9cfd2ff40f71767b0810274e9ce2235ccade71c16005fe9876d3c2010d758daacdb9652b290b1db955a9de49133f4dbec73e5f8f3b5abbce5cd0f6578d43d295
- SSDEEP
  
  1536:Dk/xY0sllyGQMOtEvwDpjwycDtKkQZQRKb61vSbgZ3QzNKUNZOr:DW60sllyWOtEvwDpjwF85k
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2