6ab5f324be6ee715f37aec3dd32ab39d0c3cf87193536f21ed2707fcaafad23b | Triage

Sharing

General

Target

2024-09-05_ca5001140be8e1cff1bbe2db54d3ea2d_cryptolocker
Size

33KB
Sample

240905-pfbgvs1eqd
MD5

ca5001140be8e1cff1bbe2db54d3ea2d
SHA1

357a118d857692705f9172fc05da4b35a79dd15c
SHA256

6ab5f324be6ee715f37aec3dd32ab39d0c3cf87193536f21ed2707fcaafad23b
SHA512

669e64fa8993a9bf1e9c15e08d1a227c7b0c91ba1f316d3815b198681e2650f1ab66ffee7235fa39c939d8dbc79136a1078b2a5ad43abb10e823552f6fc49a41
SSDEEP

384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGXua3:bG74zYcgT/Ekd0ryfj2

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-05_ca5001140be8e1cff1bbe2db54d3ea2d_cryptolocker
- Size
  
  33KB
- MD5
  
  ca5001140be8e1cff1bbe2db54d3ea2d
- SHA1
  
  357a118d857692705f9172fc05da4b35a79dd15c
- SHA256
  
  6ab5f324be6ee715f37aec3dd32ab39d0c3cf87193536f21ed2707fcaafad23b
- SHA512
  
  669e64fa8993a9bf1e9c15e08d1a227c7b0c91ba1f316d3815b198681e2650f1ab66ffee7235fa39c939d8dbc79136a1078b2a5ad43abb10e823552f6fc49a41
- SSDEEP
  
  384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGXua3:bG74zYcgT/Ekd0ryfj2
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2