76e83fa2d2f2aeaf901243f4ccde93d42b5e63242ce235a5feee47c6ca621ea5 | Triage

Sharing

General

Target

2024-09-05_a5e1c949f940f11f30e6380e8121fb78_cryptolocker
Size

44KB
Sample

240905-ml89zazbmh
MD5

a5e1c949f940f11f30e6380e8121fb78
SHA1

3b6983b2737497495f15f2742d977f71de006bec
SHA256

76e83fa2d2f2aeaf901243f4ccde93d42b5e63242ce235a5feee47c6ca621ea5
SHA512

3e610e313fb8662c7669af6d7b8649ecd1533d34dd2aa84d3efaed72b440ee29b5a9b04164570f32b08e07aacdc8a94a0d49158454bcb0341dc961afe30d89e7
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaac4HK/wSvuQTCyD/95WJlp:X6QFElP6n+gJQMOtEvwDpjBsYK/fbDFa

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-05_a5e1c949f940f11f30e6380e8121fb78_cryptolocker
- Size
  
  44KB
- MD5
  
  a5e1c949f940f11f30e6380e8121fb78
- SHA1
  
  3b6983b2737497495f15f2742d977f71de006bec
- SHA256
  
  76e83fa2d2f2aeaf901243f4ccde93d42b5e63242ce235a5feee47c6ca621ea5
- SHA512
  
  3e610e313fb8662c7669af6d7b8649ecd1533d34dd2aa84d3efaed72b440ee29b5a9b04164570f32b08e07aacdc8a94a0d49158454bcb0341dc961afe30d89e7
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaac4HK/wSvuQTCyD/95WJlp:X6QFElP6n+gJQMOtEvwDpjBsYK/fbDFa
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2