19f10da8c0bf39ef8f706aee8e20a0aa9b8e7b9cae9ef2b80bcb198c01ae3364 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-04_748d61e44177c891c72e25c6566f30d3_cryptolocker
Size

45KB
Sample

240904-s51d3atamj
MD5

748d61e44177c891c72e25c6566f30d3
SHA1

31d2ae80685d172a9f149d6deadf6494c285cfee
SHA256

19f10da8c0bf39ef8f706aee8e20a0aa9b8e7b9cae9ef2b80bcb198c01ae3364
SHA512

1025ce291fa5a19d9f8639c04fab40dcccde05fa0de1d825fea3b1dcfba4eff752184cd3049e03aa8b11df334b42134650b0862b8bf3ca928bc9fa048ceaaef0
SSDEEP

768:P6LsoEEeegiZPvEhHS5+Mh/QtOOtEvwDpjBpaD3TUogs/VXpAPX0:P6QFElP6k+MRQMOtEvwDpjBQpVXE0

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-04_748d61e44177c891c72e25c6566f30d3_cryptolocker
- Size
  
  45KB
- MD5
  
  748d61e44177c891c72e25c6566f30d3
- SHA1
  
  31d2ae80685d172a9f149d6deadf6494c285cfee
- SHA256
  
  19f10da8c0bf39ef8f706aee8e20a0aa9b8e7b9cae9ef2b80bcb198c01ae3364
- SHA512
  
  1025ce291fa5a19d9f8639c04fab40dcccde05fa0de1d825fea3b1dcfba4eff752184cd3049e03aa8b11df334b42134650b0862b8bf3ca928bc9fa048ceaaef0
- SSDEEP
  
  768:P6LsoEEeegiZPvEhHS5+Mh/QtOOtEvwDpjBpaD3TUogs/VXpAPX0:P6QFElP6k+MRQMOtEvwDpjBQpVXE0
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2