bb716993962b8cd5333b779a12a5eb2577cbf46cadfeb1afe5decb02e96adf76 | Triage

Sharing

General

Target

2024-08-07_aaed2b851045960be4f6c31b0702269e_cryptolocker
Size

73KB
Sample

240807-sg99cszflm
MD5

aaed2b851045960be4f6c31b0702269e
SHA1

4dd2aa035e0beef5f0b2d16fee7c8b6e3de30845
SHA256

bb716993962b8cd5333b779a12a5eb2577cbf46cadfeb1afe5decb02e96adf76
SHA512

27037eba637d220e2e9f696b1a437b7490df8e7114f85536c7d1625714ad56eb03585ab255e1d6eaf13db5ea8ac55f972825d7287aa7bd3138c7117f835e1084
SSDEEP

768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4ZPsED3VK2+ZtyOjgO4r9vFAg2rq2g1B/RD:vj+jsMQMOtEvwDpj5HZYTjipvF24r

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-08-07_aaed2b851045960be4f6c31b0702269e_cryptolocker
- Size
  
  73KB
- MD5
  
  aaed2b851045960be4f6c31b0702269e
- SHA1
  
  4dd2aa035e0beef5f0b2d16fee7c8b6e3de30845
- SHA256
  
  bb716993962b8cd5333b779a12a5eb2577cbf46cadfeb1afe5decb02e96adf76
- SHA512
  
  27037eba637d220e2e9f696b1a437b7490df8e7114f85536c7d1625714ad56eb03585ab255e1d6eaf13db5ea8ac55f972825d7287aa7bd3138c7117f835e1084
- SSDEEP
  
  768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4ZPsED3VK2+ZtyOjgO4r9vFAg2rq2g1B/RD:vj+jsMQMOtEvwDpj5HZYTjipvF24r
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2