ade08159096dd07f73e43fe639e683f2c0ee37781539225d7c4133e943469e7c | Triage

Sharing

General

Target

2024-08-23_c60fbbc69bf7f1448d28278b7d5a78fe_cryptolocker
Size

34KB
Sample

240823-f61d8szdlk
MD5

c60fbbc69bf7f1448d28278b7d5a78fe
SHA1

0ceb04390cfb44568f3fdbc6cc76d0a545c4f88b
SHA256

ade08159096dd07f73e43fe639e683f2c0ee37781539225d7c4133e943469e7c
SHA512

36d527a66a62e405acc2929e190b668dad8e4ce046c725fc95f3867706d98b32069290f6ca54adf7724c23c4152412e7ad29558dcb4948542a3f11e3da300a0a
SSDEEP

384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGOF6:bG74zYcgT/Ekd0ryfji

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-08-23_c60fbbc69bf7f1448d28278b7d5a78fe_cryptolocker
- Size
  
  34KB
- MD5
  
  c60fbbc69bf7f1448d28278b7d5a78fe
- SHA1
  
  0ceb04390cfb44568f3fdbc6cc76d0a545c4f88b
- SHA256
  
  ade08159096dd07f73e43fe639e683f2c0ee37781539225d7c4133e943469e7c
- SHA512
  
  36d527a66a62e405acc2929e190b668dad8e4ce046c725fc95f3867706d98b32069290f6ca54adf7724c23c4152412e7ad29558dcb4948542a3f11e3da300a0a
- SSDEEP
  
  384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGOF6:bG74zYcgT/Ekd0ryfji
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2