936d447ca3cf4e9d76a9d94c0e371ca21166b72d51c5fcd3323731174ade05a4 | Triage

Sharing

General

Target

2024-07-06_f6fe41cfe7293ed0f55a9e160698cec2_cryptolocker
Size

43KB
Sample

240706-1caxpswcmc
MD5

f6fe41cfe7293ed0f55a9e160698cec2
SHA1

3126f19cac595b9aa4b8e831458fa59e4875c4a9
SHA256

936d447ca3cf4e9d76a9d94c0e371ca21166b72d51c5fcd3323731174ade05a4
SHA512

5efbe8249105ff2c997b7b107809ef3c1a83aadcfacb1d4c3c6b59b19421ee276fc9cf80c930fd579db28168065552a9e5ad824c9e0356812b40403219a75eef
SSDEEP

384:bm74uGLLQRcsdeQ72ngEr4K7YmE8jb0nrlwfjDUad4Ey:bm74zYcgT/EkM0ryfjPd4/

Score

7^/10

Malware Config

Targets

- Target
  
  2024-07-06_f6fe41cfe7293ed0f55a9e160698cec2_cryptolocker
- Size
  
  43KB
- MD5
  
  f6fe41cfe7293ed0f55a9e160698cec2
- SHA1
  
  3126f19cac595b9aa4b8e831458fa59e4875c4a9
- SHA256
  
  936d447ca3cf4e9d76a9d94c0e371ca21166b72d51c5fcd3323731174ade05a4
- SHA512
  
  5efbe8249105ff2c997b7b107809ef3c1a83aadcfacb1d4c3c6b59b19421ee276fc9cf80c930fd579db28168065552a9e5ad824c9e0356812b40403219a75eef
- SSDEEP
  
  384:bm74uGLLQRcsdeQ72ngEr4K7YmE8jb0nrlwfjDUad4Ey:bm74zYcgT/EkM0ryfjPd4/
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2