0cd99e205fbbe8b20c93711807093bc6f54b39e040878b4b4886b81c25eb729f | Triage

Sharing

General

Target

2024-09-05_bab5ff83739ac9321165650f784e0ccf_cryptolocker
Size

45KB
Sample

240905-pelw7s1enh
MD5

bab5ff83739ac9321165650f784e0ccf
SHA1

76e0931146ab774d168c8167b4be85d3f5ab83af
SHA256

0cd99e205fbbe8b20c93711807093bc6f54b39e040878b4b4886b81c25eb729f
SHA512

d56a2fdf33d0d7d8fe1c1f4c3c92708c914120892b0af87ada2dfd839db8fecafddb201c702b391ec1aa44adbc08f065c957bc30dda21d26e45209059e605c7e
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVaD3TP7DFHuRcD9HkJ:X6QFElP6n+gJQMOtEvwDpjBmzDkWDto

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-05_bab5ff83739ac9321165650f784e0ccf_cryptolocker
- Size
  
  45KB
- MD5
  
  bab5ff83739ac9321165650f784e0ccf
- SHA1
  
  76e0931146ab774d168c8167b4be85d3f5ab83af
- SHA256
  
  0cd99e205fbbe8b20c93711807093bc6f54b39e040878b4b4886b81c25eb729f
- SHA512
  
  d56a2fdf33d0d7d8fe1c1f4c3c92708c914120892b0af87ada2dfd839db8fecafddb201c702b391ec1aa44adbc08f065c957bc30dda21d26e45209059e605c7e
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVaD3TP7DFHuRcD9HkJ:X6QFElP6n+gJQMOtEvwDpjBmzDkWDto
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2