16b0336c751e02c2e91badf9d25206ca7ad29eafde41bbc87ea4d9ad65e5c7b7 | Triage

Sharing

General

Target

2024-10-06_6e3f9263a7ab4f3de2bebf498caf17cb_cryptolocker
Size

61KB
Sample

241006-c54tgszgrn
MD5

6e3f9263a7ab4f3de2bebf498caf17cb
SHA1

a97caf0aa23af07c4569e921ce576725a10a2579
SHA256

16b0336c751e02c2e91badf9d25206ca7ad29eafde41bbc87ea4d9ad65e5c7b7
SHA512

877f6b9edd00cc243fda528a128c90692c318118e20f6093552342d81e9427813eed6b44fc731dbb87514e11477e29ef94ad3d800a11b1dd85257a8af2a6bc0f
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7Mz6+L:xj+VGMOtEvwDpjubwQEl4

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-06_6e3f9263a7ab4f3de2bebf498caf17cb_cryptolocker
- Size
  
  61KB
- MD5
  
  6e3f9263a7ab4f3de2bebf498caf17cb
- SHA1
  
  a97caf0aa23af07c4569e921ce576725a10a2579
- SHA256
  
  16b0336c751e02c2e91badf9d25206ca7ad29eafde41bbc87ea4d9ad65e5c7b7
- SHA512
  
  877f6b9edd00cc243fda528a128c90692c318118e20f6093552342d81e9427813eed6b44fc731dbb87514e11477e29ef94ad3d800a11b1dd85257a8af2a6bc0f
- SSDEEP
  
  768:xQz7yVEhs9+4uR1bytOOtEvwDpjWfbZ7uyA36S7Mz6+L:xj+VGMOtEvwDpjubwQEl4
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2