06b5a2c76b6d8846ec3e6fe50124e125a3042edcf6c3c7036847aeb111288796 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-07-10_8c989ec58a3d5fe2376a8adcced0d2fd_cryptolocker
Size

50KB
Sample

240710-b6fyda1cnd
MD5

8c989ec58a3d5fe2376a8adcced0d2fd
SHA1

ee85adde94ce761dbe040ce0cb8fc60a7e7dd027
SHA256

06b5a2c76b6d8846ec3e6fe50124e125a3042edcf6c3c7036847aeb111288796
SHA512

92e2cf5eeafbfdcebdb1b0c7c4378079760c55ba91333a70c119c16e0625c7190cb9acabd10d2b99062686b9a90b55b9c0daf0596d459c6cf4e2536bf18e8376
SSDEEP

768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4/Uth8igNrr42A7n0FmB0nO:vj+jsMQMOtEvwDpj5HczerLO04BJ

Score

7^/10

Malware Config

Targets

- Target
  
  2024-07-10_8c989ec58a3d5fe2376a8adcced0d2fd_cryptolocker
- Size
  
  50KB
- MD5
  
  8c989ec58a3d5fe2376a8adcced0d2fd
- SHA1
  
  ee85adde94ce761dbe040ce0cb8fc60a7e7dd027
- SHA256
  
  06b5a2c76b6d8846ec3e6fe50124e125a3042edcf6c3c7036847aeb111288796
- SHA512
  
  92e2cf5eeafbfdcebdb1b0c7c4378079760c55ba91333a70c119c16e0625c7190cb9acabd10d2b99062686b9a90b55b9c0daf0596d459c6cf4e2536bf18e8376
- SSDEEP
  
  768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4/Uth8igNrr42A7n0FmB0nO:vj+jsMQMOtEvwDpj5HczerLO04BJ
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2