225ec44d5b4c315a35ca103c42359e6bf4764ff44c0105cb1da4f9e8feabfec7 | Triage

Sharing

General

Target

2024-09-05_faa72d2418e8f49dee3eec3b3ce99727_cryptolocker
Size

48KB
Sample

240905-phbkmszhqp
MD5

faa72d2418e8f49dee3eec3b3ce99727
SHA1

31743b4ddde16cdfc607ab80455da9bd3f4a118c
SHA256

225ec44d5b4c315a35ca103c42359e6bf4764ff44c0105cb1da4f9e8feabfec7
SHA512

9550ab772b59ba08fe369f9d2a67d3e27f24dfa57db74caac11a39e73924719ba271f068285f96e2645fbf0c1e3973756ead91cab6be3e65cfce1b687fc86829
SSDEEP

768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLbjG9Rva/yYsm8:xj+VGMOtEvwDpjy+viHsx

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-05_faa72d2418e8f49dee3eec3b3ce99727_cryptolocker
- Size
  
  48KB
- MD5
  
  faa72d2418e8f49dee3eec3b3ce99727
- SHA1
  
  31743b4ddde16cdfc607ab80455da9bd3f4a118c
- SHA256
  
  225ec44d5b4c315a35ca103c42359e6bf4764ff44c0105cb1da4f9e8feabfec7
- SHA512
  
  9550ab772b59ba08fe369f9d2a67d3e27f24dfa57db74caac11a39e73924719ba271f068285f96e2645fbf0c1e3973756ead91cab6be3e65cfce1b687fc86829
- SSDEEP
  
  768:xQz7yVEhs9+4uR1bytOOtEvwDpjWE6BLbjG9Rva/yYsm8:xj+VGMOtEvwDpjy+viHsx
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2