bce4ef0149226047e703888333616bed9b61f80f94e2a2b91e2789fb7db8a087 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-07-22_d9e83262c9a0c054ea414a7d158a5b98_cryptolocker
Size

49KB
Sample

240722-z74b3azaqm
MD5

d9e83262c9a0c054ea414a7d158a5b98
SHA1

9433d03a1c9c6874b05567d0dd71777d7f0aa348
SHA256

bce4ef0149226047e703888333616bed9b61f80f94e2a2b91e2789fb7db8a087
SHA512

66d3d08f454903482c229895a073d79e41b1ce0cdbd48bc11cdcb4a4dc8c3e10ec5b88a96de3554f641cf28f6ab23ea9a0302bbb06611eb5d1b28603b10f8417
SSDEEP

768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4/Uth8igNrr42A7n0FmB0nq:vj+jsMQMOtEvwDpj5HczerLO04B9

Score

7^/10

Malware Config

Targets

- Target
  
  2024-07-22_d9e83262c9a0c054ea414a7d158a5b98_cryptolocker
- Size
  
  49KB
- MD5
  
  d9e83262c9a0c054ea414a7d158a5b98
- SHA1
  
  9433d03a1c9c6874b05567d0dd71777d7f0aa348
- SHA256
  
  bce4ef0149226047e703888333616bed9b61f80f94e2a2b91e2789fb7db8a087
- SHA512
  
  66d3d08f454903482c229895a073d79e41b1ce0cdbd48bc11cdcb4a4dc8c3e10ec5b88a96de3554f641cf28f6ab23ea9a0302bbb06611eb5d1b28603b10f8417
- SSDEEP
  
  768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4/Uth8igNrr42A7n0FmB0nq:vj+jsMQMOtEvwDpj5HczerLO04B9
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2