d7857fc0a042c61f686f4183a28176b3c5706befcdf38e13d4e99ab7cb4f5bf8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-05_ef2f222d35ceccbd54b3e5d537055907_cryptolocker
Size

43KB
Sample

240905-vb6ebswclg
MD5

ef2f222d35ceccbd54b3e5d537055907
SHA1

9562414cd193e9dcc86469576fd8d43a8547d933
SHA256

d7857fc0a042c61f686f4183a28176b3c5706befcdf38e13d4e99ab7cb4f5bf8
SHA512

940e409ab0226a412edbec8df0d70d1270d959d8ffeee8e9fafac7f89f7ee98b0be0646e6f23c2a280d31a8f79cb595165e8a9c5c8339b13d244853c86263cf8
SSDEEP

768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtA/:bCDOw9aMDooc+vA/

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-05_ef2f222d35ceccbd54b3e5d537055907_cryptolocker
- Size
  
  43KB
- MD5
  
  ef2f222d35ceccbd54b3e5d537055907
- SHA1
  
  9562414cd193e9dcc86469576fd8d43a8547d933
- SHA256
  
  d7857fc0a042c61f686f4183a28176b3c5706befcdf38e13d4e99ab7cb4f5bf8
- SHA512
  
  940e409ab0226a412edbec8df0d70d1270d959d8ffeee8e9fafac7f89f7ee98b0be0646e6f23c2a280d31a8f79cb595165e8a9c5c8339b13d244853c86263cf8
- SSDEEP
  
  768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtA/:bCDOw9aMDooc+vA/
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2