22352eba57b1ea96beeeb296a8de4cfb5ac244fbc8536bc0642df6ebcc81c156 | Triage

Sharing

General

Target

2024-09-06_892ea659b34690950b5dd0ee031d0fe3_cryptolocker
Size

35KB
Sample

240906-emta5sveqj
MD5

892ea659b34690950b5dd0ee031d0fe3
SHA1

e0146330da384139b46b6b57623ad16e59ba78fb
SHA256

22352eba57b1ea96beeeb296a8de4cfb5ac244fbc8536bc0642df6ebcc81c156
SHA512

e6abc9c90841e44be980de54425947c708a68ffea6f76f03274fbb6cb1d1bc7cd031f443d32953a731a5cbf96b69abecfc12b9c454aaf0c0fea7555b352c7ef1
SSDEEP

384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGXuadQq:bG74zYcgT/Ekd0ryfjHq

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-06_892ea659b34690950b5dd0ee031d0fe3_cryptolocker
- Size
  
  35KB
- MD5
  
  892ea659b34690950b5dd0ee031d0fe3
- SHA1
  
  e0146330da384139b46b6b57623ad16e59ba78fb
- SHA256
  
  22352eba57b1ea96beeeb296a8de4cfb5ac244fbc8536bc0642df6ebcc81c156
- SHA512
  
  e6abc9c90841e44be980de54425947c708a68ffea6f76f03274fbb6cb1d1bc7cd031f443d32953a731a5cbf96b69abecfc12b9c454aaf0c0fea7555b352c7ef1
- SSDEEP
  
  384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGXuadQq:bG74zYcgT/Ekd0ryfjHq
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2