1196da090c07d9f89a4b2eac455d5780d4749f51bc817784967a28ced92a120e | Triage

Sharing

General

Target

2024-09-01_3376d51b2a69e856851eaa9c1e38f958_cryptolocker
Size

53KB
Sample

240901-qrj4tasajk
MD5

3376d51b2a69e856851eaa9c1e38f958
SHA1

3b2d6c6bd01cc15a812085241c14aa93bc5deb8e
SHA256

1196da090c07d9f89a4b2eac455d5780d4749f51bc817784967a28ced92a120e
SHA512

c12d437681eee69521b21f329f73d0141b6dc3d6fcb65a7183bfd1f448345e35eb1054aa2feb6b2047776a389f1ed2d7bfba62f8959c2d9c1c7601266e3b9333
SSDEEP

768:V6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpj/MLa5VccPt547MV:V6QFElP6n+gMQMOtEvwDpjyaLccVCYV

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-01_3376d51b2a69e856851eaa9c1e38f958_cryptolocker
- Size
  
  53KB
- MD5
  
  3376d51b2a69e856851eaa9c1e38f958
- SHA1
  
  3b2d6c6bd01cc15a812085241c14aa93bc5deb8e
- SHA256
  
  1196da090c07d9f89a4b2eac455d5780d4749f51bc817784967a28ced92a120e
- SHA512
  
  c12d437681eee69521b21f329f73d0141b6dc3d6fcb65a7183bfd1f448345e35eb1054aa2feb6b2047776a389f1ed2d7bfba62f8959c2d9c1c7601266e3b9333
- SSDEEP
  
  768:V6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpj/MLa5VccPt547MV:V6QFElP6n+gMQMOtEvwDpjyaLccVCYV
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2