bff6082e8e6a05de6bf1fa20be5cbf9be4d6d8e2bef6c8daed606432712d7c71 | Triage

Sharing

General

Target

2024-11-20_666e311d2c5ee85619a65f308f3c4b36_cryptolocker
Size

44KB
Sample

241120-f3yfgawqfm
MD5

666e311d2c5ee85619a65f308f3c4b36
SHA1

6d30cc12b658bc2b8142ddc97dcb01dba6a1f71f
SHA256

bff6082e8e6a05de6bf1fa20be5cbf9be4d6d8e2bef6c8daed606432712d7c71
SHA512

4d5002fdfbdd3ba2e3d18aeef5c80c1e6acad5a0bc52ae03d41a40fa8466f232113ab91a854dc332fdeeddc4c078d97c8f40234427e754750c45a84188482687
SSDEEP

768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAqjrA:bCDOw9aMDooc+vAqjc

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-11-20_666e311d2c5ee85619a65f308f3c4b36_cryptolocker
- Size
  
  44KB
- MD5
  
  666e311d2c5ee85619a65f308f3c4b36
- SHA1
  
  6d30cc12b658bc2b8142ddc97dcb01dba6a1f71f
- SHA256
  
  bff6082e8e6a05de6bf1fa20be5cbf9be4d6d8e2bef6c8daed606432712d7c71
- SHA512
  
  4d5002fdfbdd3ba2e3d18aeef5c80c1e6acad5a0bc52ae03d41a40fa8466f232113ab91a854dc332fdeeddc4c078d97c8f40234427e754750c45a84188482687
- SSDEEP
  
  768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAqjrA:bCDOw9aMDooc+vAqjc
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2