d4b8b95bf268b15c68fdea48f52212c25675fcbc89e08ada22f87f1f4fcc8287 | Triage

Sharing

General

Target

2024-08-26_ad047b81d05213c80572c4c020a3ec98_cryptolocker
Size

62KB
Sample

240826-bwyensygkr
MD5

ad047b81d05213c80572c4c020a3ec98
SHA1

c9822952d4743429a98c1f88bbebb4987aa0929a
SHA256

d4b8b95bf268b15c68fdea48f52212c25675fcbc89e08ada22f87f1f4fcc8287
SHA512

8bc03ce94bb9109764d140bdc1cd57f70c8a5bb4af3ddb2839af8778133510b74382a582ec9f1d8e9a72160a6f801cb0e6a9d237550418354c18b2b560668bb5
SSDEEP

1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ36ucb:ZVxkGOtEvwDpjcag

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-08-26_ad047b81d05213c80572c4c020a3ec98_cryptolocker
- Size
  
  62KB
- MD5
  
  ad047b81d05213c80572c4c020a3ec98
- SHA1
  
  c9822952d4743429a98c1f88bbebb4987aa0929a
- SHA256
  
  d4b8b95bf268b15c68fdea48f52212c25675fcbc89e08ada22f87f1f4fcc8287
- SHA512
  
  8bc03ce94bb9109764d140bdc1cd57f70c8a5bb4af3ddb2839af8778133510b74382a582ec9f1d8e9a72160a6f801cb0e6a9d237550418354c18b2b560668bb5
- SSDEEP
  
  1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ36ucb:ZVxkGOtEvwDpjcag
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2