b41f5883d8aa1ac37362865f3a36e5e60647e0f0c9ed5a1a90f7cb558f17e63d | Triage

Sharing

General

Target

2024-09-05_8e0941ce64fc5f491ef0aa7c60076cf9_cryptolocker
Size

55KB
Sample

240905-pcnm1s1eje
MD5

8e0941ce64fc5f491ef0aa7c60076cf9
SHA1

174a4a2a0279754b44ac7853b28b3270c23650ec
SHA256

b41f5883d8aa1ac37362865f3a36e5e60647e0f0c9ed5a1a90f7cb558f17e63d
SHA512

d1fcdfa423c11642c748cc7f52d490c58178e9fc2a490af8e1c54651dbab3c87ca564f03203479b07e50be1115452d3b6e8397f2c960cfb1bb40f4c7cdfb12e4
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/BtOOtEvwDpjBVaD3E09vxmlcaTIo:X6QFElP6n+gJBMOtEvwDpjBtExmlr

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-05_8e0941ce64fc5f491ef0aa7c60076cf9_cryptolocker
- Size
  
  55KB
- MD5
  
  8e0941ce64fc5f491ef0aa7c60076cf9
- SHA1
  
  174a4a2a0279754b44ac7853b28b3270c23650ec
- SHA256
  
  b41f5883d8aa1ac37362865f3a36e5e60647e0f0c9ed5a1a90f7cb558f17e63d
- SHA512
  
  d1fcdfa423c11642c748cc7f52d490c58178e9fc2a490af8e1c54651dbab3c87ca564f03203479b07e50be1115452d3b6e8397f2c960cfb1bb40f4c7cdfb12e4
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/BtOOtEvwDpjBVaD3E09vxmlcaTIo:X6QFElP6n+gJBMOtEvwDpjBtExmlr
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2