029a46e79c4299354dbd98468b5922a1e9674db8dcee0370205849243a24414b | Triage

Sharing

General

Target

2024-07-26_7b0aab0f5a3d23072b69cb066ff4e393_cryptolocker
Size

48KB
Sample

240726-ar4kfsvbpk
MD5

7b0aab0f5a3d23072b69cb066ff4e393
SHA1

4bf1ad89fc9316d155387ad932570f01675cbc00
SHA256

029a46e79c4299354dbd98468b5922a1e9674db8dcee0370205849243a24414b
SHA512

8cda4654b180fa9e04916b0d0cd36ae9259b4d35cf7f652b241ac1041ae0e0d80ceefbb7283a425e44ce639de53c758e7e5bc684e84daeddf67da717d70d08ba
SSDEEP

1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszsbKY1x5hjatL:aq7tdgI2MyzNORQtOflIwoHNV2XBFV7f

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-07-26_7b0aab0f5a3d23072b69cb066ff4e393_cryptolocker
- Size
  
  48KB
- MD5
  
  7b0aab0f5a3d23072b69cb066ff4e393
- SHA1
  
  4bf1ad89fc9316d155387ad932570f01675cbc00
- SHA256
  
  029a46e79c4299354dbd98468b5922a1e9674db8dcee0370205849243a24414b
- SHA512
  
  8cda4654b180fa9e04916b0d0cd36ae9259b4d35cf7f652b241ac1041ae0e0d80ceefbb7283a425e44ce639de53c758e7e5bc684e84daeddf67da717d70d08ba
- SSDEEP
  
  1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszsbKY1x5hjatL:aq7tdgI2MyzNORQtOflIwoHNV2XBFV7f
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2