886a279bd67403b1d520606bf876c3d6759f126a5d8fc557b6f97b9b07278202 | Triage

Sharing

General

Target

2024-07-09_88545671fe9288c4656b94625b4bdb91_cryptolocker
Size

50KB
Sample

240709-w3geyszekb
MD5

88545671fe9288c4656b94625b4bdb91
SHA1

473895b8a47b3b4115a354354757a4ce2f2e0f80
SHA256

886a279bd67403b1d520606bf876c3d6759f126a5d8fc557b6f97b9b07278202
SHA512

50e8768017ab77a54ad3fc04409b304898c86cfe9f2459ecb85243783a027f30e5054e1194fdf6240bd34e1b4b44db88d0a6de49165d4e04bb877114aff5ed2a
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaaEqbIu556BlvsTz:X6QFElP6n+gJQMOtEvwDpjB0GIWSlvIz

Score

7^/10

Malware Config

Targets

- Target
  
  2024-07-09_88545671fe9288c4656b94625b4bdb91_cryptolocker
- Size
  
  50KB
- MD5
  
  88545671fe9288c4656b94625b4bdb91
- SHA1
  
  473895b8a47b3b4115a354354757a4ce2f2e0f80
- SHA256
  
  886a279bd67403b1d520606bf876c3d6759f126a5d8fc557b6f97b9b07278202
- SHA512
  
  50e8768017ab77a54ad3fc04409b304898c86cfe9f2459ecb85243783a027f30e5054e1194fdf6240bd34e1b4b44db88d0a6de49165d4e04bb877114aff5ed2a
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaaEqbIu556BlvsTz:X6QFElP6n+gJQMOtEvwDpjB0GIWSlvIz
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2