08fad5600657ee82e92049f8a01a20c1407db4092db41a92d5f0be867e807179 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-02_8549ee524db6233218185c42fc480646_cryptolocker
Size

63KB
Sample

240902-hcy1esvgnf
MD5

8549ee524db6233218185c42fc480646
SHA1

b40c950cec1f9bccf0be82639ddd1a188a8e6fe5
SHA256

08fad5600657ee82e92049f8a01a20c1407db4092db41a92d5f0be867e807179
SHA512

95f320488296e8378a789c2cca821ac70533cb9688409e2e85c115e181c269ea01f7333db096fecee3d5eb4820fe8530231b1cbcbe8dd05b2cf7a6062f865857
SSDEEP

1536:btB9g/xtCSKfxLIc//Xr+/AO/kIZ3ft2nVuTKB6nggOlHdUHZnTg:btng54SMLr+/AO/kIhfoKMHdac

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-02_8549ee524db6233218185c42fc480646_cryptolocker
- Size
  
  63KB
- MD5
  
  8549ee524db6233218185c42fc480646
- SHA1
  
  b40c950cec1f9bccf0be82639ddd1a188a8e6fe5
- SHA256
  
  08fad5600657ee82e92049f8a01a20c1407db4092db41a92d5f0be867e807179
- SHA512
  
  95f320488296e8378a789c2cca821ac70533cb9688409e2e85c115e181c269ea01f7333db096fecee3d5eb4820fe8530231b1cbcbe8dd05b2cf7a6062f865857
- SSDEEP
  
  1536:btB9g/xtCSKfxLIc//Xr+/AO/kIZ3ft2nVuTKB6nggOlHdUHZnTg:btng54SMLr+/AO/kIhfoKMHdac
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2