a34ee78319aae3193121a64e226126c7917174eaaf1a7079a002595ec35756bf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-08-03_aa65bc15878d4959a056383522f525bf_cryptolocker
Size

48KB
Sample

240803-jsrfysxbpq
MD5

aa65bc15878d4959a056383522f525bf
SHA1

3cb9206c3db6667905feb545a4626595b4c60cc0
SHA256

a34ee78319aae3193121a64e226126c7917174eaaf1a7079a002595ec35756bf
SHA512

be27dea4fe24381d344b45631fce62cf976af0aaae9f56237801488fc691415c838ccb037c3bea5dcff6926fd7c333c7f33cc58c15c190a98f7c7d7e6596582c
SSDEEP

768:P6LsoEEeegiZPvEhHS5+Mh/QtOOtEvwDpjBpaD3TUogs/VXpAPlFh:P6QFElP6k+MRQMOtEvwDpjBQpVX8L

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-08-03_aa65bc15878d4959a056383522f525bf_cryptolocker
- Size
  
  48KB
- MD5
  
  aa65bc15878d4959a056383522f525bf
- SHA1
  
  3cb9206c3db6667905feb545a4626595b4c60cc0
- SHA256
  
  a34ee78319aae3193121a64e226126c7917174eaaf1a7079a002595ec35756bf
- SHA512
  
  be27dea4fe24381d344b45631fce62cf976af0aaae9f56237801488fc691415c838ccb037c3bea5dcff6926fd7c333c7f33cc58c15c190a98f7c7d7e6596582c
- SSDEEP
  
  768:P6LsoEEeegiZPvEhHS5+Mh/QtOOtEvwDpjBpaD3TUogs/VXpAPlFh:P6QFElP6k+MRQMOtEvwDpjBQpVX8L
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2