ae69b2097dd0db85f2453a131053c6c839b59df8c09a31ba9776d25d6c475852 | Triage

Sharing

General

Target

2024-09-05_df1a063208c8e09fc01f61db16cd7038_cryptolocker
Size

79KB
Sample

240905-ptndks1cjr
MD5

df1a063208c8e09fc01f61db16cd7038
SHA1

5011699e2ae41f063156129bdd6250decc089675
SHA256

ae69b2097dd0db85f2453a131053c6c839b59df8c09a31ba9776d25d6c475852
SHA512

eea11c728e94027fbcbe811a32729a472f8e47584230ec7ff6f85ff49a9e2f73d9f16ff9849479dc48624a5520a49dd4d0e5c07e879f2e1d4ff957df93f3aef8
SSDEEP

1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ3KUJ2:ZVxkGOtEvwDpjca12

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-05_df1a063208c8e09fc01f61db16cd7038_cryptolocker
- Size
  
  79KB
- MD5
  
  df1a063208c8e09fc01f61db16cd7038
- SHA1
  
  5011699e2ae41f063156129bdd6250decc089675
- SHA256
  
  ae69b2097dd0db85f2453a131053c6c839b59df8c09a31ba9776d25d6c475852
- SHA512
  
  eea11c728e94027fbcbe811a32729a472f8e47584230ec7ff6f85ff49a9e2f73d9f16ff9849479dc48624a5520a49dd4d0e5c07e879f2e1d4ff957df93f3aef8
- SSDEEP
  
  1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ3KUJ2:ZVxkGOtEvwDpjca12
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2