99c7bbcea5acae79bcdef43268944d14b7f09f34da37f0a2c0287fd9e60ca434 | Triage

Sharing

General

Target

2024-06-25_32cdf598770921f66574f3ae4e4d40dd_cryptolocker
Size

45KB
Sample

240625-mt5azsverb
MD5

32cdf598770921f66574f3ae4e4d40dd
SHA1

49ce60fcbe2cb1d82628a12ca4713e41abde9370
SHA256

99c7bbcea5acae79bcdef43268944d14b7f09f34da37f0a2c0287fd9e60ca434
SHA512

665bb12bfcdcfb5b08a1e1b12e2b8364e3d61c0c8992714e2b303a03f7c396b470dc80f04511aeae6b74731d11749bd02b00297547f13b8ffaa353f730969326
SSDEEP

384:bm74uGLLQRcsdeQ72ngEr4K7YmE8jb0nrlwfjDUk3r:bm74zYcgT/EkM0ryfjd3r

Score

7^/10

Malware Config

Targets

- Target
  
  2024-06-25_32cdf598770921f66574f3ae4e4d40dd_cryptolocker
- Size
  
  45KB
- MD5
  
  32cdf598770921f66574f3ae4e4d40dd
- SHA1
  
  49ce60fcbe2cb1d82628a12ca4713e41abde9370
- SHA256
  
  99c7bbcea5acae79bcdef43268944d14b7f09f34da37f0a2c0287fd9e60ca434
- SHA512
  
  665bb12bfcdcfb5b08a1e1b12e2b8364e3d61c0c8992714e2b303a03f7c396b470dc80f04511aeae6b74731d11749bd02b00297547f13b8ffaa353f730969326
- SSDEEP
  
  384:bm74uGLLQRcsdeQ72ngEr4K7YmE8jb0nrlwfjDUk3r:bm74zYcgT/EkM0ryfjd3r
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2