8810c81caa58a4d85d255dcfb6b1f56b2ef2aa7ded58e73609bbbb2a5e55d042 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-06_4af48eac0639c6d335c99147c01008b4_cryptolocker
Size

86KB
Sample

240906-m5vwpatbmg
MD5

4af48eac0639c6d335c99147c01008b4
SHA1

93664d11889aaad7d5f13dc544ee6e0e45aa8a7c
SHA256

8810c81caa58a4d85d255dcfb6b1f56b2ef2aa7ded58e73609bbbb2a5e55d042
SHA512

80da24e9a1648f5d0f69988886f7861c594a1bd8bed9ee2b888a41962501aa9c0978da174def1e8730ada352de769bd7e36f2e2287887aea7afce0218b1375fc
SSDEEP

1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMrC+hm5:TCjsIOtEvwDpj5HE/OUHnSM25

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-06_4af48eac0639c6d335c99147c01008b4_cryptolocker
- Size
  
  86KB
- MD5
  
  4af48eac0639c6d335c99147c01008b4
- SHA1
  
  93664d11889aaad7d5f13dc544ee6e0e45aa8a7c
- SHA256
  
  8810c81caa58a4d85d255dcfb6b1f56b2ef2aa7ded58e73609bbbb2a5e55d042
- SHA512
  
  80da24e9a1648f5d0f69988886f7861c594a1bd8bed9ee2b888a41962501aa9c0978da174def1e8730ada352de769bd7e36f2e2287887aea7afce0218b1375fc
- SSDEEP
  
  1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMrC+hm5:TCjsIOtEvwDpj5HE/OUHnSM25
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2