b9f006589444842069281e12438f0edc4be21968ddb445510e7d03c603772d0f | Triage

Sharing

General

Target

2024-09-05_c73dfb48648edf74643239fdfe6b51cd_cryptolocker
Size

46KB
Sample

240905-m2a24sygmj
MD5

c73dfb48648edf74643239fdfe6b51cd
SHA1

205d47bdbd4cf351507bc9bc4fcacdec641530dc
SHA256

b9f006589444842069281e12438f0edc4be21968ddb445510e7d03c603772d0f
SHA512

159c19ad12578ba7428d69f4d2af61759015998b3a38260f4e0d7dec5afd7a31b2790dcf756ff666bef21525cc6434961636bb2f1c19304d1ee3ffffb3dfa5aa
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/aMDhkJ9:6j+1NMOtEvwDpjrRraJ9

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-05_c73dfb48648edf74643239fdfe6b51cd_cryptolocker
- Size
  
  46KB
- MD5
  
  c73dfb48648edf74643239fdfe6b51cd
- SHA1
  
  205d47bdbd4cf351507bc9bc4fcacdec641530dc
- SHA256
  
  b9f006589444842069281e12438f0edc4be21968ddb445510e7d03c603772d0f
- SHA512
  
  159c19ad12578ba7428d69f4d2af61759015998b3a38260f4e0d7dec5afd7a31b2790dcf756ff666bef21525cc6434961636bb2f1c19304d1ee3ffffb3dfa5aa
- SSDEEP
  
  768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/aMDhkJ9:6j+1NMOtEvwDpjrRraJ9
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2