f8798381aa7577b29d5125492f3b2caa97b08350cbc7d8972b5451dd2cf4586b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-05_8034ad1f7c634d0d2a489079ea1d85c0_cryptolocker
Size

44KB
Sample

240905-jbd5asvhkm
MD5

8034ad1f7c634d0d2a489079ea1d85c0
SHA1

ce9d217bbf727a853adcf4a7fa54b7911e4a46c4
SHA256

f8798381aa7577b29d5125492f3b2caa97b08350cbc7d8972b5451dd2cf4586b
SHA512

00057b1349d71e964bc756ca801ad49356df21bdaac279bb9815086eb895739d7e5588a508b9eb7954679566dbfc15c833b79f17e371a7e8685c89b319b67523
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVaD3TP7DFHuRcD9HdE:X6QFElP6n+gJQMOtEvwDpjBmzDkWDtdE

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-05_8034ad1f7c634d0d2a489079ea1d85c0_cryptolocker
- Size
  
  44KB
- MD5
  
  8034ad1f7c634d0d2a489079ea1d85c0
- SHA1
  
  ce9d217bbf727a853adcf4a7fa54b7911e4a46c4
- SHA256
  
  f8798381aa7577b29d5125492f3b2caa97b08350cbc7d8972b5451dd2cf4586b
- SHA512
  
  00057b1349d71e964bc756ca801ad49356df21bdaac279bb9815086eb895739d7e5588a508b9eb7954679566dbfc15c833b79f17e371a7e8685c89b319b67523
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVaD3TP7DFHuRcD9HdE:X6QFElP6n+gJQMOtEvwDpjBmzDkWDtdE
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2