3ad72ad42caefa8a7ae71a76452eadd89cc419e8b412edf085f7321c1c3d036d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-04_8f889f16e6c2ee30d433ec536c3f8360_cryptolocker
Size

48KB
Sample

240904-c6vl7svfrd
MD5

8f889f16e6c2ee30d433ec536c3f8360
SHA1

becb2a9866e60757e63c6992f0d15e665e3ceb6d
SHA256

3ad72ad42caefa8a7ae71a76452eadd89cc419e8b412edf085f7321c1c3d036d
SHA512

b0b2cf106d58d2cc4863000fda1ac07ba7c3202b7bbf153fd3bf46072db49cd4653ccab2780f583ebd831b28726975f84162b1d86091f570d736eb9814f91e94
SSDEEP

768:P6LsoEEeegiZPvEhHS5+Mh/QtOOtEvwDpjBpaD3TUogs/VXpAPl/:P6QFElP6k+MRQMOtEvwDpjBQpVX8/

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-04_8f889f16e6c2ee30d433ec536c3f8360_cryptolocker
- Size
  
  48KB
- MD5
  
  8f889f16e6c2ee30d433ec536c3f8360
- SHA1
  
  becb2a9866e60757e63c6992f0d15e665e3ceb6d
- SHA256
  
  3ad72ad42caefa8a7ae71a76452eadd89cc419e8b412edf085f7321c1c3d036d
- SHA512
  
  b0b2cf106d58d2cc4863000fda1ac07ba7c3202b7bbf153fd3bf46072db49cd4653ccab2780f583ebd831b28726975f84162b1d86091f570d736eb9814f91e94
- SSDEEP
  
  768:P6LsoEEeegiZPvEhHS5+Mh/QtOOtEvwDpjBpaD3TUogs/VXpAPl/:P6QFElP6k+MRQMOtEvwDpjBQpVX8/
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2