94148ae362e0b6df9b71a09d64a642782f22ca393467b1821101a0f0c543a717 | Triage

Sharing

General

Target

2024-08-25_ee97200c301723508576588c912c6371_cryptolocker
Size

46KB
Sample

240825-c2k7zasgje
MD5

ee97200c301723508576588c912c6371
SHA1

ceee0b7b65332f42fdab7098a96ab21a5969aa37
SHA256

94148ae362e0b6df9b71a09d64a642782f22ca393467b1821101a0f0c543a717
SHA512

ad9a0a7e5c8eff7b5a87d29b0ce2890fd0edd57bd08c0977dc2ec0311e674e6d7b8fdf939f5a09e792e2ef0dc9bd955eba176708244cdc8ed14a3e6ebaffb3f3
SSDEEP

384:bm74uGLLQRcsdeQ72ngEr4K7YmE8jb0nrlwfjDUk3jJ1:bm74zYcgT/EkM0ryfjd33

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-08-25_ee97200c301723508576588c912c6371_cryptolocker
- Size
  
  46KB
- MD5
  
  ee97200c301723508576588c912c6371
- SHA1
  
  ceee0b7b65332f42fdab7098a96ab21a5969aa37
- SHA256
  
  94148ae362e0b6df9b71a09d64a642782f22ca393467b1821101a0f0c543a717
- SHA512
  
  ad9a0a7e5c8eff7b5a87d29b0ce2890fd0edd57bd08c0977dc2ec0311e674e6d7b8fdf939f5a09e792e2ef0dc9bd955eba176708244cdc8ed14a3e6ebaffb3f3
- SSDEEP
  
  384:bm74uGLLQRcsdeQ72ngEr4K7YmE8jb0nrlwfjDUk3jJ1:bm74zYcgT/EkM0ryfjd33
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2