0b0677f1ce69f06e779729eea1b795ff3ae69000fad84339f0208d801cd9ec98 | Triage

Sharing

General

Target

2024-07-09_651d7908c7b6e2ecf862d0ac6287194a_cryptolocker
Size

47KB
Sample

240709-tlfe8atdle
MD5

651d7908c7b6e2ecf862d0ac6287194a
SHA1

c9e4b9dcb12f6a3f707ded0fe1445a143587ce7c
SHA256

0b0677f1ce69f06e779729eea1b795ff3ae69000fad84339f0208d801cd9ec98
SHA512

94b58e140495a632ccc322553337cc4aabce5ea8e4d9c88e3a0b2fae245651336fb0c419149950f7b2794f5b36f3cb5ebac3b07665aa131fcb86d1e8445c1cad
SSDEEP

768:y6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpjbXOQ69zbjlAAX5e9zrD:y6QFElP6n+gMQMOtEvwDpjbizbR9Xwz/

Score

7^/10

Malware Config

Targets

- Target
  
  2024-07-09_651d7908c7b6e2ecf862d0ac6287194a_cryptolocker
- Size
  
  47KB
- MD5
  
  651d7908c7b6e2ecf862d0ac6287194a
- SHA1
  
  c9e4b9dcb12f6a3f707ded0fe1445a143587ce7c
- SHA256
  
  0b0677f1ce69f06e779729eea1b795ff3ae69000fad84339f0208d801cd9ec98
- SHA512
  
  94b58e140495a632ccc322553337cc4aabce5ea8e4d9c88e3a0b2fae245651336fb0c419149950f7b2794f5b36f3cb5ebac3b07665aa131fcb86d1e8445c1cad
- SSDEEP
  
  768:y6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpjbXOQ69zbjlAAX5e9zrD:y6QFElP6n+gMQMOtEvwDpjbizbR9Xwz/
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2