a6621495f1fb9de01a6fc783a129e302d26c35cf6c26b525d8ff1602ec6197da | Triage

Sharing

General

Target

2024-09-06_7929d4b6d639108c19a65ce1ca6dc98e_cryptolocker
Size

46KB
Sample

240906-emlajavenr
MD5

7929d4b6d639108c19a65ce1ca6dc98e
SHA1

509cd1f0509e88f353d01e50ddf92fcbb0a0bb77
SHA256

a6621495f1fb9de01a6fc783a129e302d26c35cf6c26b525d8ff1602ec6197da
SHA512

01bf4e7c1d9c3f05e2e620b8230be40de24e39d4c690ba2d3892ca40a29efb7116112380fc028b75d30e4c49483578c8f06f59e419e7d177d712502e97db073e
SSDEEP

384:bm74uGLLQRcsdeQ72ngEr4K7YmE8jb0nrlwfjDUadQC8J:bm74zYcgT/EkM0ryfjPdQZJ

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-06_7929d4b6d639108c19a65ce1ca6dc98e_cryptolocker
- Size
  
  46KB
- MD5
  
  7929d4b6d639108c19a65ce1ca6dc98e
- SHA1
  
  509cd1f0509e88f353d01e50ddf92fcbb0a0bb77
- SHA256
  
  a6621495f1fb9de01a6fc783a129e302d26c35cf6c26b525d8ff1602ec6197da
- SHA512
  
  01bf4e7c1d9c3f05e2e620b8230be40de24e39d4c690ba2d3892ca40a29efb7116112380fc028b75d30e4c49483578c8f06f59e419e7d177d712502e97db073e
- SSDEEP
  
  384:bm74uGLLQRcsdeQ72ngEr4K7YmE8jb0nrlwfjDUadQC8J:bm74zYcgT/EkM0ryfjPdQZJ
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2