8b00ba6f8194e93be813e009be77d626ad3b914a7ab5d90f586fef9f7425b106 | Triage

Sharing

General

Target

2024-10-12_8a0df7480d553975b21c5c9ecf2a87ef_cryptolocker
Size

45KB
Sample

241012-jt68ss1cld
MD5

8a0df7480d553975b21c5c9ecf2a87ef
SHA1

9c2993046d0b7e9647e988514155c732ce7f8f97
SHA256

8b00ba6f8194e93be813e009be77d626ad3b914a7ab5d90f586fef9f7425b106
SHA512

0fe9bb9de9c431229e64850fc9054b0933b61ccbd2038317a1e77b7173f3848a4214f66c336bb022931121c68d115e62eb7722f4b7147778bd7bc261fd47ec31
SSDEEP

768:TS5nQJ24LR7tOOtEvwDpjGqPhqlcnvgpnY1n9w+:m5nkFNMOtEvwDpjG8hgpY19d

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-12_8a0df7480d553975b21c5c9ecf2a87ef_cryptolocker
- Size
  
  45KB
- MD5
  
  8a0df7480d553975b21c5c9ecf2a87ef
- SHA1
  
  9c2993046d0b7e9647e988514155c732ce7f8f97
- SHA256
  
  8b00ba6f8194e93be813e009be77d626ad3b914a7ab5d90f586fef9f7425b106
- SHA512
  
  0fe9bb9de9c431229e64850fc9054b0933b61ccbd2038317a1e77b7173f3848a4214f66c336bb022931121c68d115e62eb7722f4b7147778bd7bc261fd47ec31
- SSDEEP
  
  768:TS5nQJ24LR7tOOtEvwDpjGqPhqlcnvgpnY1n9w+:m5nkFNMOtEvwDpjG8hgpY19d
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2