72c9a8d50dc11c960bc633a8780b094b534ce0d911f92b57a4c3efff99c38e7d | Triage

Sharing

General

Target

2024-09-06_2ab4176e459512fa18608ecde61eb5ba_cryptolocker
Size

86KB
Sample

240906-mz8wcssgqh
MD5

2ab4176e459512fa18608ecde61eb5ba
SHA1

4124d6e021287ea3bf9032a4569f768922e2b253
SHA256

72c9a8d50dc11c960bc633a8780b094b534ce0d911f92b57a4c3efff99c38e7d
SHA512

08eef2235fc4ce839d481188dae96af6f8386c2cc79a4505adcab98dcba5fc2a266b6dce834fbf57949ef4e4d166e8f52c10ede5c83917905cdbbfe0b6b10e75
SSDEEP

1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMrC+hm9:TCjsIOtEvwDpj5HE/OUHnSM29

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-06_2ab4176e459512fa18608ecde61eb5ba_cryptolocker
- Size
  
  86KB
- MD5
  
  2ab4176e459512fa18608ecde61eb5ba
- SHA1
  
  4124d6e021287ea3bf9032a4569f768922e2b253
- SHA256
  
  72c9a8d50dc11c960bc633a8780b094b534ce0d911f92b57a4c3efff99c38e7d
- SHA512
  
  08eef2235fc4ce839d481188dae96af6f8386c2cc79a4505adcab98dcba5fc2a266b6dce834fbf57949ef4e4d166e8f52c10ede5c83917905cdbbfe0b6b10e75
- SSDEEP
  
  1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMrC+hm9:TCjsIOtEvwDpj5HE/OUHnSM29
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2