08ea3cf831a7a1f88b1db7b7a4af105975aa3d394db4dcce427ccbad3d984617 | Triage

Sharing

General

Target

2024-06-20_838ec65b1ce386f580c74b8589a78ac8_cryptolocker
Size

48KB
Sample

240620-nk3w8sygqj
MD5

838ec65b1ce386f580c74b8589a78ac8
SHA1

a3bba44cfe35c1082c1b71a18d495706a5406a28
SHA256

08ea3cf831a7a1f88b1db7b7a4af105975aa3d394db4dcce427ccbad3d984617
SHA512

31f180a7741f66a1934fdf3b15c837225388f445e0566be4a0150625a7916b2e541df994a4990d6044fb1c4ec54fbc00554cca420445bbf5fcea67026a863181
SSDEEP

768:79inqyNR/QtOOtEvwDpjBKccJVODvy3SpU3f:79mqyNhQMOtEvwDpjBzckqS2f

Score

7^/10

Malware Config

Targets

- Target
  
  2024-06-20_838ec65b1ce386f580c74b8589a78ac8_cryptolocker
- Size
  
  48KB
- MD5
  
  838ec65b1ce386f580c74b8589a78ac8
- SHA1
  
  a3bba44cfe35c1082c1b71a18d495706a5406a28
- SHA256
  
  08ea3cf831a7a1f88b1db7b7a4af105975aa3d394db4dcce427ccbad3d984617
- SHA512
  
  31f180a7741f66a1934fdf3b15c837225388f445e0566be4a0150625a7916b2e541df994a4990d6044fb1c4ec54fbc00554cca420445bbf5fcea67026a863181
- SSDEEP
  
  768:79inqyNR/QtOOtEvwDpjBKccJVODvy3SpU3f:79mqyNhQMOtEvwDpjBzckqS2f
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2