3cd1ce30b107024429edfa6ae5ae90f01a3ce815d43b3cc846839061c59a126b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-04_38bc8b0d7add58ab0dbe5cccd00dc70f_cryptolocker
Size

63KB
Sample

240904-ssxgmsthre
MD5

38bc8b0d7add58ab0dbe5cccd00dc70f
SHA1

60253c297ca7c5c76c6595f37f92f063646a59d9
SHA256

3cd1ce30b107024429edfa6ae5ae90f01a3ce815d43b3cc846839061c59a126b
SHA512

a1951b2426f38d802f6c50fb44ab3daf43820b35a21fc0e50eeec2d54d6abc01ae51beb07d4f67252f54545b82b70fdbe7227d350e258c9f26d5a39ec7ed38e3
SSDEEP

1536:btB9g/xtCSKfxLIc//Xr+/AO/kIZ3ft2nVuTKB6nggOlHdUHZn1K:btng54SMLr+/AO/kIhfoKMHdaU

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-04_38bc8b0d7add58ab0dbe5cccd00dc70f_cryptolocker
- Size
  
  63KB
- MD5
  
  38bc8b0d7add58ab0dbe5cccd00dc70f
- SHA1
  
  60253c297ca7c5c76c6595f37f92f063646a59d9
- SHA256
  
  3cd1ce30b107024429edfa6ae5ae90f01a3ce815d43b3cc846839061c59a126b
- SHA512
  
  a1951b2426f38d802f6c50fb44ab3daf43820b35a21fc0e50eeec2d54d6abc01ae51beb07d4f67252f54545b82b70fdbe7227d350e258c9f26d5a39ec7ed38e3
- SSDEEP
  
  1536:btB9g/xtCSKfxLIc//Xr+/AO/kIZ3ft2nVuTKB6nggOlHdUHZn1K:btng54SMLr+/AO/kIhfoKMHdaU
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2