e36230598743005628248cbc8676b4b11a68e4be1bc98e72112171bf3a4690c1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-06_492ef884ff0acb35ad20fb9fc3516c20_cryptolocker
Size

75KB
Sample

240906-axb3dsxblg
MD5

492ef884ff0acb35ad20fb9fc3516c20
SHA1

b4a968059132cddbdeacce217976111cc7e2ca8a
SHA256

e36230598743005628248cbc8676b4b11a68e4be1bc98e72112171bf3a4690c1
SHA512

3dc3ec3c148a25f00bc426b001cc2b83b2b6cc5c1479183a9a303e14c73eb8c137844cec4f2c23fba8338a9c2f871f180d9ff4c04e1294d64730bc17915e935b
SSDEEP

768:9UQz7yVEhs9+4T/1bytOOtEvwDpjLXOQ69zbjlAAX5e9za:9Uj+AIMOtEvwDpjLizbR9Xwza

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-06_492ef884ff0acb35ad20fb9fc3516c20_cryptolocker
- Size
  
  75KB
- MD5
  
  492ef884ff0acb35ad20fb9fc3516c20
- SHA1
  
  b4a968059132cddbdeacce217976111cc7e2ca8a
- SHA256
  
  e36230598743005628248cbc8676b4b11a68e4be1bc98e72112171bf3a4690c1
- SHA512
  
  3dc3ec3c148a25f00bc426b001cc2b83b2b6cc5c1479183a9a303e14c73eb8c137844cec4f2c23fba8338a9c2f871f180d9ff4c04e1294d64730bc17915e935b
- SSDEEP
  
  768:9UQz7yVEhs9+4T/1bytOOtEvwDpjLXOQ69zbjlAAX5e9za:9Uj+AIMOtEvwDpjLizbR9Xwza
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2