15e7f11705a4eb9b365c35982aa48cd90893ce3a3ba9d895dd58caa2cf4981c4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-08-06_6b002de588946d0f760b130455818193_cryptolocker
Size

79KB
Sample

240806-ey2rnazbml
MD5

6b002de588946d0f760b130455818193
SHA1

7543ea1b0a17add1c079b69d725a61b9eb376e97
SHA256

15e7f11705a4eb9b365c35982aa48cd90893ce3a3ba9d895dd58caa2cf4981c4
SHA512

2576bfd58a77127220197cb0871fc963f80fdcba643b321c7ee3edd6c8439845eba0a8bdb1716adc1c6c34dada9d0981c1f73a29c110338319ac6e466a9f3c24
SSDEEP

1536:X6QFElP6n+gJQMOtEvwDpjBZYTjipvF2bx1rHsoLktNp:X6a+SOtEvwDpjBZYvQd2q

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-08-06_6b002de588946d0f760b130455818193_cryptolocker
- Size
  
  79KB
- MD5
  
  6b002de588946d0f760b130455818193
- SHA1
  
  7543ea1b0a17add1c079b69d725a61b9eb376e97
- SHA256
  
  15e7f11705a4eb9b365c35982aa48cd90893ce3a3ba9d895dd58caa2cf4981c4
- SHA512
  
  2576bfd58a77127220197cb0871fc963f80fdcba643b321c7ee3edd6c8439845eba0a8bdb1716adc1c6c34dada9d0981c1f73a29c110338319ac6e466a9f3c24
- SSDEEP
  
  1536:X6QFElP6n+gJQMOtEvwDpjBZYTjipvF2bx1rHsoLktNp:X6a+SOtEvwDpjBZYvQd2q
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2