1575ee0a75f9be643bca717854b346608f50e1bc202fcb81dcabae22554c95fe | Triage

Sharing

General

Target

2024-09-06_26b12d3f59e55324b6a63c520db609ef_cryptolocker
Size

47KB
Sample

240906-w1zths1hja
MD5

26b12d3f59e55324b6a63c520db609ef
SHA1

25de39398038aec094b704fff4ee0d6992100591
SHA256

1575ee0a75f9be643bca717854b346608f50e1bc202fcb81dcabae22554c95fe
SHA512

6b6c24774b527608b726ae268d8e07903d3f357af8e8b786c4557cc0d4bc2ad1db962b129bc0f6705c9e60b3c2a66c55bcc2665abe3a87101b4712b13997b36f
SSDEEP

768:26LsoVEeegiZPvEhHSP+gDdQtOOtEvwDpjtMLZdzuqpXsiE8Wq/DpkITYaq:26Q0ElP6G+gBQMOtEvwDpjgWMl7TYaq

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-06_26b12d3f59e55324b6a63c520db609ef_cryptolocker
- Size
  
  47KB
- MD5
  
  26b12d3f59e55324b6a63c520db609ef
- SHA1
  
  25de39398038aec094b704fff4ee0d6992100591
- SHA256
  
  1575ee0a75f9be643bca717854b346608f50e1bc202fcb81dcabae22554c95fe
- SHA512
  
  6b6c24774b527608b726ae268d8e07903d3f357af8e8b786c4557cc0d4bc2ad1db962b129bc0f6705c9e60b3c2a66c55bcc2665abe3a87101b4712b13997b36f
- SSDEEP
  
  768:26LsoVEeegiZPvEhHSP+gDdQtOOtEvwDpjtMLZdzuqpXsiE8Wq/DpkITYaq:26Q0ElP6G+gBQMOtEvwDpjgWMl7TYaq
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2