f44857ef3d39dc1797998c8994b55593ace5470cd48a0fe1ba94bacc18a21695 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-08-08_3ec7364249873b2c3dc0595066e309ed_cryptolocker
Size

53KB
Sample

240808-ztvg1atcpc
MD5

3ec7364249873b2c3dc0595066e309ed
SHA1

8371712d616995c5a9cf91943d33c63d2702be8b
SHA256

f44857ef3d39dc1797998c8994b55593ace5470cd48a0fe1ba94bacc18a21695
SHA512

b484d36a4a8b506b3a0c87216c7d59f8fe9c9846893e78818fe8adf66104b92dd1e875b6d83d5898871d164795421e1e231cf681fd3cde6d6a97d7e8953a733a
SSDEEP

768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4hdCW1nw71TkhsiPn1YFvPd:vj+jsMQMOtEvwDpj5HH1nw73KOFd

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-08-08_3ec7364249873b2c3dc0595066e309ed_cryptolocker
- Size
  
  53KB
- MD5
  
  3ec7364249873b2c3dc0595066e309ed
- SHA1
  
  8371712d616995c5a9cf91943d33c63d2702be8b
- SHA256
  
  f44857ef3d39dc1797998c8994b55593ace5470cd48a0fe1ba94bacc18a21695
- SHA512
  
  b484d36a4a8b506b3a0c87216c7d59f8fe9c9846893e78818fe8adf66104b92dd1e875b6d83d5898871d164795421e1e231cf681fd3cde6d6a97d7e8953a733a
- SSDEEP
  
  768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4hdCW1nw71TkhsiPn1YFvPd:vj+jsMQMOtEvwDpj5HH1nw73KOFd
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2