d1acfdade9a07a3d715163aeca7307a49a35f42d34d2ef7f4d9f8c38e65daa86 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-08-25_93d4ed439e2a6cec410439dfe28c942c_cryptolocker
Size

55KB
Sample

240825-hlkt6a1akd
MD5

93d4ed439e2a6cec410439dfe28c942c
SHA1

15789f3bd36081910145fd19d6c9a516c65bc1b0
SHA256

d1acfdade9a07a3d715163aeca7307a49a35f42d34d2ef7f4d9f8c38e65daa86
SHA512

2c6e195455c5bacfa2bcb3a638ea307e0e0a5252d68bb6ae5b5aea35dc50cf2364ebcc72fb70dd522c6ed4978e4b9e4bb9e69f8fcb045b0ab6f88f0979ad8546
SSDEEP

1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszsbKY1xzpAIX6Exg:aq7tdgI2MyzNORQtOflIwoHNV2XBFV7P

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-08-25_93d4ed439e2a6cec410439dfe28c942c_cryptolocker
- Size
  
  55KB
- MD5
  
  93d4ed439e2a6cec410439dfe28c942c
- SHA1
  
  15789f3bd36081910145fd19d6c9a516c65bc1b0
- SHA256
  
  d1acfdade9a07a3d715163aeca7307a49a35f42d34d2ef7f4d9f8c38e65daa86
- SHA512
  
  2c6e195455c5bacfa2bcb3a638ea307e0e0a5252d68bb6ae5b5aea35dc50cf2364ebcc72fb70dd522c6ed4978e4b9e4bb9e69f8fcb045b0ab6f88f0979ad8546
- SSDEEP
  
  1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszsbKY1xzpAIX6Exg:aq7tdgI2MyzNORQtOflIwoHNV2XBFV7P
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2