af46359fb8a8559b3ab8b1f7de35528939932f2c35500a9279052f59feedba5e | Triage

Sharing

General

Target

2024-09-05_8f7cf30cd4c07959284fc873219384fc_cryptolocker
Size

85KB
Sample

240905-pcr1fazgpr
MD5

8f7cf30cd4c07959284fc873219384fc
SHA1

20491706e832292a17c9608471e7cad1a519ed03
SHA256

af46359fb8a8559b3ab8b1f7de35528939932f2c35500a9279052f59feedba5e
SHA512

9411894d66e31f68bc04f98a904e7e0a2b513dd90eb645743da1d3f1b30400a36be139d0084bb053e0ef8049e63f5903fb248fb07542c98cba06480885cddd81
SSDEEP

1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMrCsr:TCjsIOtEvwDpj5HE/OUHnSMH

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-05_8f7cf30cd4c07959284fc873219384fc_cryptolocker
- Size
  
  85KB
- MD5
  
  8f7cf30cd4c07959284fc873219384fc
- SHA1
  
  20491706e832292a17c9608471e7cad1a519ed03
- SHA256
  
  af46359fb8a8559b3ab8b1f7de35528939932f2c35500a9279052f59feedba5e
- SHA512
  
  9411894d66e31f68bc04f98a904e7e0a2b513dd90eb645743da1d3f1b30400a36be139d0084bb053e0ef8049e63f5903fb248fb07542c98cba06480885cddd81
- SSDEEP
  
  1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMrCsr:TCjsIOtEvwDpj5HE/OUHnSMH
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2