a014c7037b2ddb4b91773068ab802ed9eea941a3bc8e167148531844e3ebedc7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-06_014a57b6d0df0bc61aba84155d12b302_cryptolocker
Size

51KB
Sample

240906-wzweps1emn
MD5

014a57b6d0df0bc61aba84155d12b302
SHA1

64bc4686401ca09bd310ae7acb7fd419827b216b
SHA256

a014c7037b2ddb4b91773068ab802ed9eea941a3bc8e167148531844e3ebedc7
SHA512

81ecbb2bea536789ab6947afe9f96b0716559ebafd9aaaec2302757cd296a7b6a71e7593663ae91a161c4c66f006654d56f5c1bc2c8fd3e04e8d8888170fc984
SSDEEP

768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4/Uth8igNrr42A7n0FmB0no5:vj+jsMQMOtEvwDpj5HczerLO04BV

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-06_014a57b6d0df0bc61aba84155d12b302_cryptolocker
- Size
  
  51KB
- MD5
  
  014a57b6d0df0bc61aba84155d12b302
- SHA1
  
  64bc4686401ca09bd310ae7acb7fd419827b216b
- SHA256
  
  a014c7037b2ddb4b91773068ab802ed9eea941a3bc8e167148531844e3ebedc7
- SHA512
  
  81ecbb2bea536789ab6947afe9f96b0716559ebafd9aaaec2302757cd296a7b6a71e7593663ae91a161c4c66f006654d56f5c1bc2c8fd3e04e8d8888170fc984
- SSDEEP
  
  768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4/Uth8igNrr42A7n0FmB0no5:vj+jsMQMOtEvwDpj5HczerLO04BV
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2