715142a4ee439507dd25b8c888e9f05cacd2d9a70f0867bf314289db68399dfd | Triage

Sharing

General

Target

2024-08-29_589c070af90f36ba0e36678afaf44774_cryptolocker
Size

36KB
Sample

240829-r2l7laxble
MD5

589c070af90f36ba0e36678afaf44774
SHA1

9da7f11a1b6e8bfe1c81d66ec7a80259c1008011
SHA256

715142a4ee439507dd25b8c888e9f05cacd2d9a70f0867bf314289db68399dfd
SHA512

1274986aef0890a88deb161fb99a67a45015298479357cf02831473beb3dc111095ba56a897cc0925985eab90bf29e73bbc2a11be454708e7c0b1294671c920e
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVaD3M:X6QFElP6n+gJQMOtEvwDpjB1

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-08-29_589c070af90f36ba0e36678afaf44774_cryptolocker
- Size
  
  36KB
- MD5
  
  589c070af90f36ba0e36678afaf44774
- SHA1
  
  9da7f11a1b6e8bfe1c81d66ec7a80259c1008011
- SHA256
  
  715142a4ee439507dd25b8c888e9f05cacd2d9a70f0867bf314289db68399dfd
- SHA512
  
  1274986aef0890a88deb161fb99a67a45015298479357cf02831473beb3dc111095ba56a897cc0925985eab90bf29e73bbc2a11be454708e7c0b1294671c920e
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVaD3M:X6QFElP6n+gJQMOtEvwDpjB1
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2