377594a8191a0bdd2133686db6d744d095142aa185de927aa330c681192e4d33 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-08-08_25f8fd0b600506c5c042cd966c86a037_cryptolocker
Size

63KB
Sample

240808-br2lja1eqg
MD5

25f8fd0b600506c5c042cd966c86a037
SHA1

0cf17db357ebbb3f311ea7b73ffae5196325ac49
SHA256

377594a8191a0bdd2133686db6d744d095142aa185de927aa330c681192e4d33
SHA512

5b2edc5e18bd647cbeb5f5490497d926546e36888b058953584e53c79819af1d1d40e2dc57aab0e23c244395b15f0c1ddb3f0409c31b04b97ab6078c0f3b4ec6
SSDEEP

1536:btB9g/xtCSKfxLIc//Xr+/AO/kIZ3ft2nVuTKB6nggOlHdUHZnT5L:btng54SMLr+/AO/kIhfoKMHda5

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-08-08_25f8fd0b600506c5c042cd966c86a037_cryptolocker
- Size
  
  63KB
- MD5
  
  25f8fd0b600506c5c042cd966c86a037
- SHA1
  
  0cf17db357ebbb3f311ea7b73ffae5196325ac49
- SHA256
  
  377594a8191a0bdd2133686db6d744d095142aa185de927aa330c681192e4d33
- SHA512
  
  5b2edc5e18bd647cbeb5f5490497d926546e36888b058953584e53c79819af1d1d40e2dc57aab0e23c244395b15f0c1ddb3f0409c31b04b97ab6078c0f3b4ec6
- SSDEEP
  
  1536:btB9g/xtCSKfxLIc//Xr+/AO/kIZ3ft2nVuTKB6nggOlHdUHZnT5L:btng54SMLr+/AO/kIhfoKMHda5
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2