441fc9fb61bf7bc015e81ee61e39615cde29852fceda4efa4ec9bb0635510a66 | Triage

Sharing

General

Target

2024-09-05_b2256b98bc639072ce252174a97a22fb_cryptolocker
Size

31KB
Sample

240905-pdz3fazhjq
MD5

b2256b98bc639072ce252174a97a22fb
SHA1

233b306a328a88245027e205aab4058ae498a804
SHA256

441fc9fb61bf7bc015e81ee61e39615cde29852fceda4efa4ec9bb0635510a66
SHA512

3de62b3c5e2d1f8500e9c3e052e11e8c3ae32486aa17f7b5340830685ee28e813b99afd845c007ac93c77ebca8275a8ae7425206902f39aa24d2057376a991ff
SSDEEP

768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+94fI/:vj+jsMQMOtEvwDpj5YF

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-05_b2256b98bc639072ce252174a97a22fb_cryptolocker
- Size
  
  31KB
- MD5
  
  b2256b98bc639072ce252174a97a22fb
- SHA1
  
  233b306a328a88245027e205aab4058ae498a804
- SHA256
  
  441fc9fb61bf7bc015e81ee61e39615cde29852fceda4efa4ec9bb0635510a66
- SHA512
  
  3de62b3c5e2d1f8500e9c3e052e11e8c3ae32486aa17f7b5340830685ee28e813b99afd845c007ac93c77ebca8275a8ae7425206902f39aa24d2057376a991ff
- SSDEEP
  
  768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+94fI/:vj+jsMQMOtEvwDpj5YF
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2