5786cb3657c7e96247fc0d2218e7daa9ec5824ae4a99f4ecbe6bfae993fcc83d | Triage

Sharing

General

Target

2024-09-05_fa36b5405f838ba0504482961b0320e0_cryptolocker
Size

43KB
Sample

240905-pvgmes1hne
MD5

fa36b5405f838ba0504482961b0320e0
SHA1

928d5245b510cf2661f2b6b8763bb12a0e90199c
SHA256

5786cb3657c7e96247fc0d2218e7daa9ec5824ae4a99f4ecbe6bfae993fcc83d
SHA512

7ef164ae1d3fea069c45a2bb4e59b7bff034c29f4668c1d069266e3f124650a9b7192a349581bb6ab72dba718bd970649a76a03aab571734710c684abe8da1af
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaac4HK/wSvuQTCyD/954:X6QFElP6n+gJQMOtEvwDpjBsYK/fbDFy

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-05_fa36b5405f838ba0504482961b0320e0_cryptolocker
- Size
  
  43KB
- MD5
  
  fa36b5405f838ba0504482961b0320e0
- SHA1
  
  928d5245b510cf2661f2b6b8763bb12a0e90199c
- SHA256
  
  5786cb3657c7e96247fc0d2218e7daa9ec5824ae4a99f4ecbe6bfae993fcc83d
- SHA512
  
  7ef164ae1d3fea069c45a2bb4e59b7bff034c29f4668c1d069266e3f124650a9b7192a349581bb6ab72dba718bd970649a76a03aab571734710c684abe8da1af
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaac4HK/wSvuQTCyD/954:X6QFElP6n+gJQMOtEvwDpjBsYK/fbDFy
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2