f2aa2ee45f4bdcba36948c31d711a0548b9bda4d2cb1dc13e10ea647d02db924 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-04_2307d3404137ab608ebb384ac4efdc61_cryptolocker
Size

49KB
Sample

240904-kd8mcsycka
MD5

2307d3404137ab608ebb384ac4efdc61
SHA1

77da5ec66c5e35a0831c40166e18f53c00be6a58
SHA256

f2aa2ee45f4bdcba36948c31d711a0548b9bda4d2cb1dc13e10ea647d02db924
SHA512

adeaff6719bffe834664ac7465bef6ba4b48f545c2ed31daeeb6ae352a6cff205d7273b27ba4e1e1ba252947f801dd2108f8b225679672079c34c94361493590
SSDEEP

1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszsbKY1x5hjatshz:aq7tdgI2MyzNORQtOflIwoHNV2XBFV7m

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-04_2307d3404137ab608ebb384ac4efdc61_cryptolocker
- Size
  
  49KB
- MD5
  
  2307d3404137ab608ebb384ac4efdc61
- SHA1
  
  77da5ec66c5e35a0831c40166e18f53c00be6a58
- SHA256
  
  f2aa2ee45f4bdcba36948c31d711a0548b9bda4d2cb1dc13e10ea647d02db924
- SHA512
  
  adeaff6719bffe834664ac7465bef6ba4b48f545c2ed31daeeb6ae352a6cff205d7273b27ba4e1e1ba252947f801dd2108f8b225679672079c34c94361493590
- SSDEEP
  
  1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszsbKY1x5hjatshz:aq7tdgI2MyzNORQtOflIwoHNV2XBFV7m
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2