3eedcef5e262dca93aed1752a4107b064337ddc842917dfe26c28d689f6a6a56 | Triage

Sharing

General

Target

2024-08-07_bfb01b37a9a926cb9c7332b86726d345_cryptolocker
Size

52KB
Sample

240807-y7qkjaxbna
MD5

bfb01b37a9a926cb9c7332b86726d345
SHA1

326573020935d8f4cd968c3fd980317d2722e1c4
SHA256

3eedcef5e262dca93aed1752a4107b064337ddc842917dfe26c28d689f6a6a56
SHA512

a79c7e23f6a9ebe792f2e8a3c727088d79271c51c02979d11497bca17c4b591162880b096e3828e9b2b85cbf4e926ea3bc296cc11c2a3c14ced2d691b44b36ec
SSDEEP

768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4/Uth8igNrr42A7n0FmB0ntgH:vj+jsMQMOtEvwDpj5HczerLO04BZH

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-08-07_bfb01b37a9a926cb9c7332b86726d345_cryptolocker
- Size
  
  52KB
- MD5
  
  bfb01b37a9a926cb9c7332b86726d345
- SHA1
  
  326573020935d8f4cd968c3fd980317d2722e1c4
- SHA256
  
  3eedcef5e262dca93aed1752a4107b064337ddc842917dfe26c28d689f6a6a56
- SHA512
  
  a79c7e23f6a9ebe792f2e8a3c727088d79271c51c02979d11497bca17c4b591162880b096e3828e9b2b85cbf4e926ea3bc296cc11c2a3c14ced2d691b44b36ec
- SSDEEP
  
  768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4/Uth8igNrr42A7n0FmB0ntgH:vj+jsMQMOtEvwDpj5HczerLO04BZH
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2