eaf8a00f14c40fd9e2669d190767ee85a1f63bd4ef971fb11f2d2c20057fa4b3 | Triage

Sharing

General

Target

2024-06-24_47ae739a8496591d63deec9a2ce429db_cryptolocker
Size

58KB
Sample

240624-q1hmcaycpj
MD5

47ae739a8496591d63deec9a2ce429db
SHA1

2144aba4d28cf410623b5640c5edce5d46ae8495
SHA256

eaf8a00f14c40fd9e2669d190767ee85a1f63bd4ef971fb11f2d2c20057fa4b3
SHA512

1d6420851d52fed9509a06e31664f1e61d8d7fcd27fe71ff8fa99b9695bd5320ebbc93ae645a1e39f3c7d34ba8dde682b8ce6ab4d35daf3f37c70887e18150df
SSDEEP

768:79inqyNR/QtOOtEvwDpjBK/iVTab3GRuv3VylsPQQWTa/2wT:79mqyNhQMOtEvwDpjBPY7xv3gy9WTAh

Score

7^/10

Malware Config

Targets

- Target
  
  2024-06-24_47ae739a8496591d63deec9a2ce429db_cryptolocker
- Size
  
  58KB
- MD5
  
  47ae739a8496591d63deec9a2ce429db
- SHA1
  
  2144aba4d28cf410623b5640c5edce5d46ae8495
- SHA256
  
  eaf8a00f14c40fd9e2669d190767ee85a1f63bd4ef971fb11f2d2c20057fa4b3
- SHA512
  
  1d6420851d52fed9509a06e31664f1e61d8d7fcd27fe71ff8fa99b9695bd5320ebbc93ae645a1e39f3c7d34ba8dde682b8ce6ab4d35daf3f37c70887e18150df
- SSDEEP
  
  768:79inqyNR/QtOOtEvwDpjBK/iVTab3GRuv3VylsPQQWTa/2wT:79mqyNhQMOtEvwDpjBPY7xv3gy9WTAh
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2