General

  • Target

    2024-08-25_abf1576a1b526958cae255287f36ce72_cryptolocker

  • Size

    34KB

  • Sample

    240825-hq5ecs1cpf

  • MD5

    abf1576a1b526958cae255287f36ce72

  • SHA1

    5237ddf4db4d0b1da995fee92e6693ab7fb3b43d

  • SHA256

    18d4d809425609425a7942223d487dd308634fa0023973194a48cda9197a8250

  • SHA512

    32e436e5651177772d9c6f95e2ab4a0370eaa346cccf5dd43ab64e2264ba31500ac65a93066b33d336aa1f47a6dfdef719213060944ae3809fee5e89d62b34f9

  • SSDEEP

    384:bM7Q0pjC4GybxMv01d3AcASBQMf6i/zzzcYgUPSznStEkcsgYKJ:b/yC4GyNM01GuQMNXw2PSjSKkcJYKJ

Score
7/10

Malware Config

Targets

    • Target

      2024-08-25_abf1576a1b526958cae255287f36ce72_cryptolocker

    • Size

      34KB

    • MD5

      abf1576a1b526958cae255287f36ce72

    • SHA1

      5237ddf4db4d0b1da995fee92e6693ab7fb3b43d

    • SHA256

      18d4d809425609425a7942223d487dd308634fa0023973194a48cda9197a8250

    • SHA512

      32e436e5651177772d9c6f95e2ab4a0370eaa346cccf5dd43ab64e2264ba31500ac65a93066b33d336aa1f47a6dfdef719213060944ae3809fee5e89d62b34f9

    • SSDEEP

      384:bM7Q0pjC4GybxMv01d3AcASBQMf6i/zzzcYgUPSznStEkcsgYKJ:b/yC4GyNM01GuQMNXw2PSjSKkcJYKJ

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

MITRE ATT&CK Enterprise v15

Tasks