d9b1b09f4ff8902f9fe4f1bb2ac09ceec727a13669159051e744f02f5d576638 | Triage

Sharing

General

Target

2024-08-24_84a0ce21a5751fe3cf781525b1c77820_cryptolocker
Size

32KB
Sample

240824-hy51vsyfjf
MD5

84a0ce21a5751fe3cf781525b1c77820
SHA1

491543f19808264279895c09ead89a461fb00e47
SHA256

d9b1b09f4ff8902f9fe4f1bb2ac09ceec727a13669159051e744f02f5d576638
SHA512

db4cbcb000f463b52d75c456885e173a275637d856aff881cf621d878486aa01aa15edbecc7b8611a6bb7ca2ff6422fb68303dad670dfc2c2128c7ace2a252d1
SSDEEP

384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4l8tFFxE2B4lWS+s:btB9g/WItCSsAGjX7r3B4Gs

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-08-24_84a0ce21a5751fe3cf781525b1c77820_cryptolocker
- Size
  
  32KB
- MD5
  
  84a0ce21a5751fe3cf781525b1c77820
- SHA1
  
  491543f19808264279895c09ead89a461fb00e47
- SHA256
  
  d9b1b09f4ff8902f9fe4f1bb2ac09ceec727a13669159051e744f02f5d576638
- SHA512
  
  db4cbcb000f463b52d75c456885e173a275637d856aff881cf621d878486aa01aa15edbecc7b8611a6bb7ca2ff6422fb68303dad670dfc2c2128c7ace2a252d1
- SSDEEP
  
  384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4l8tFFxE2B4lWS+s:btB9g/WItCSsAGjX7r3B4Gs
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2