ddf984042721c4dfbcfc6be76917963487cac908f8662e4d62b0802175858790 | Triage

Sharing

General

Target

2024-09-05_da9a41384f2dd6b74192c3f1b53b0cd3_cryptolocker
Size

35KB
Sample

240905-pfx1vs1erf
MD5

da9a41384f2dd6b74192c3f1b53b0cd3
SHA1

5013cb097bfd97d704eefd4fcb31fa3aeae1043d
SHA256

ddf984042721c4dfbcfc6be76917963487cac908f8662e4d62b0802175858790
SHA512

13602e31ac0edffd5cbc2436807e78120508cff88a0fe6b97ec101874ed129307fac4c141e78698425e98d6bef80c829b01cc6b39f506877b322457b70bf4fa7
SSDEEP

384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGXvJF3SF:bG74zYcgT/Ekd0ryfjkbCF

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-05_da9a41384f2dd6b74192c3f1b53b0cd3_cryptolocker
- Size
  
  35KB
- MD5
  
  da9a41384f2dd6b74192c3f1b53b0cd3
- SHA1
  
  5013cb097bfd97d704eefd4fcb31fa3aeae1043d
- SHA256
  
  ddf984042721c4dfbcfc6be76917963487cac908f8662e4d62b0802175858790
- SHA512
  
  13602e31ac0edffd5cbc2436807e78120508cff88a0fe6b97ec101874ed129307fac4c141e78698425e98d6bef80c829b01cc6b39f506877b322457b70bf4fa7
- SSDEEP
  
  384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGXvJF3SF:bG74zYcgT/Ekd0ryfjkbCF
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2