d53030aded8c956ddda0002f938c4417d628c3393aeae8f01abaac522e634998 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-05_744dd2b95b77dcfefdda0d140cc48732_cryptolocker
Size

74KB
Sample

240905-mwcnrazdlc
MD5

744dd2b95b77dcfefdda0d140cc48732
SHA1

869b17f96c0e41d3ca2c50ad7a99b5f13ce816cf
SHA256

d53030aded8c956ddda0002f938c4417d628c3393aeae8f01abaac522e634998
SHA512

fc25f4cda949cc621c5d113cde133904daff8d7914d470b1ee01a8653cb25182064c11a132c5ab6f206910cdc777b32417219442f9b0659a73eb6611da0ddef8
SSDEEP

768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4ZPsED3VK2+ZtyOjgO4r9vFAg2rq2g1B/R+:vj+jsMQMOtEvwDpj5HZYTjipvF24mP

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-05_744dd2b95b77dcfefdda0d140cc48732_cryptolocker
- Size
  
  74KB
- MD5
  
  744dd2b95b77dcfefdda0d140cc48732
- SHA1
  
  869b17f96c0e41d3ca2c50ad7a99b5f13ce816cf
- SHA256
  
  d53030aded8c956ddda0002f938c4417d628c3393aeae8f01abaac522e634998
- SHA512
  
  fc25f4cda949cc621c5d113cde133904daff8d7914d470b1ee01a8653cb25182064c11a132c5ab6f206910cdc777b32417219442f9b0659a73eb6611da0ddef8
- SSDEEP
  
  768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4ZPsED3VK2+ZtyOjgO4r9vFAg2rq2g1B/R+:vj+jsMQMOtEvwDpj5HZYTjipvF24mP
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2