9ba978284376553fc25fed6c47ced64cdb79ea9b6ed7fc14e550fa0eb8b1d114 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-06_dba29f29822fbd88fbe98bab2a3b2a5c_cryptolocker
Size

73KB
Sample

240906-enwsnawbpe
MD5

dba29f29822fbd88fbe98bab2a3b2a5c
SHA1

4c9aed51d91882183abb980be60b116085bb45a1
SHA256

9ba978284376553fc25fed6c47ced64cdb79ea9b6ed7fc14e550fa0eb8b1d114
SHA512

37b31b3a5002e40ac86f7543e51302934822514fb516bc6a0fe6323589204c9ff90ebfa5d4544929443c03c336fc07b08c7a14263b3b8bcff1cf418332478813
SSDEEP

768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4ZPsED3VK2+ZtyOjgO4r9vFAg2rq2g1B/R8:vj+jsMQMOtEvwDpj5HZYTjipvF24U

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-06_dba29f29822fbd88fbe98bab2a3b2a5c_cryptolocker
- Size
  
  73KB
- MD5
  
  dba29f29822fbd88fbe98bab2a3b2a5c
- SHA1
  
  4c9aed51d91882183abb980be60b116085bb45a1
- SHA256
  
  9ba978284376553fc25fed6c47ced64cdb79ea9b6ed7fc14e550fa0eb8b1d114
- SHA512
  
  37b31b3a5002e40ac86f7543e51302934822514fb516bc6a0fe6323589204c9ff90ebfa5d4544929443c03c336fc07b08c7a14263b3b8bcff1cf418332478813
- SSDEEP
  
  768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4ZPsED3VK2+ZtyOjgO4r9vFAg2rq2g1B/R8:vj+jsMQMOtEvwDpj5HZYTjipvF24U
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2