14213dbade7155992b7160d3d82c68aeb54d541905b7194407e2d3296f8806a4 | Triage

Sharing

General

Target

2024-09-05_541648950ee96a67bba87cf544f3cb16_cryptolocker
Size

43KB
Sample

240905-ppwt6a1blm
MD5

541648950ee96a67bba87cf544f3cb16
SHA1

d350e1fdd0693906ceb6571af63f8047becf5655
SHA256

14213dbade7155992b7160d3d82c68aeb54d541905b7194407e2d3296f8806a4
SHA512

09dd10c8421784fcb96df7198c90669a599b35cfd58dec7dd389161c9973b517f204940b833463b83c8e4dc2dfdec8696345fe908c54cdf2d63dc32c8c5b62f5
SSDEEP

768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAGa:bCDOw9aMDooc+vAGa

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-05_541648950ee96a67bba87cf544f3cb16_cryptolocker
- Size
  
  43KB
- MD5
  
  541648950ee96a67bba87cf544f3cb16
- SHA1
  
  d350e1fdd0693906ceb6571af63f8047becf5655
- SHA256
  
  14213dbade7155992b7160d3d82c68aeb54d541905b7194407e2d3296f8806a4
- SHA512
  
  09dd10c8421784fcb96df7198c90669a599b35cfd58dec7dd389161c9973b517f204940b833463b83c8e4dc2dfdec8696345fe908c54cdf2d63dc32c8c5b62f5
- SSDEEP
  
  768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAGa:bCDOw9aMDooc+vAGa
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2