2dbca698e596b7dc30920b85c93d996644fa66beec623ea010091950845d692a | Triage

Sharing

General

Target

2024-07-27_a7c2ac249e3f6ea0f2c4b4d578d4ceb6_cryptolocker
Size

79KB
Sample

240727-cw36la1fjm
MD5

a7c2ac249e3f6ea0f2c4b4d578d4ceb6
SHA1

d8794fa04e22b043a4402907019418e2b8f3e0a4
SHA256

2dbca698e596b7dc30920b85c93d996644fa66beec623ea010091950845d692a
SHA512

d599fa3e9af7bde6d0bf504189d5d4964ebeec96c7044dfb215b5207228917794329c936bb75772485ace1c6cd5de3a9550a4c4e6413a67ad926bd50e158c975
SSDEEP

1536:X6QFElP6n+gJQMOtEvwDpjBZYTjipvF2bx1rHsoLktNG:X6a+SOtEvwDpjBZYvQd21

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-07-27_a7c2ac249e3f6ea0f2c4b4d578d4ceb6_cryptolocker
- Size
  
  79KB
- MD5
  
  a7c2ac249e3f6ea0f2c4b4d578d4ceb6
- SHA1
  
  d8794fa04e22b043a4402907019418e2b8f3e0a4
- SHA256
  
  2dbca698e596b7dc30920b85c93d996644fa66beec623ea010091950845d692a
- SHA512
  
  d599fa3e9af7bde6d0bf504189d5d4964ebeec96c7044dfb215b5207228917794329c936bb75772485ace1c6cd5de3a9550a4c4e6413a67ad926bd50e158c975
- SSDEEP
  
  1536:X6QFElP6n+gJQMOtEvwDpjBZYTjipvF2bx1rHsoLktNG:X6a+SOtEvwDpjBZYvQd21
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2