97f62b26f092add912a9e7d6ae1ea042a2065edba6ade5ea8edc0ae742033d17 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-07_08fe2dbb80832ea5b379d55e47e936a0_cryptolocker
Size

77KB
Sample

240907-aqx2aavfqp
MD5

08fe2dbb80832ea5b379d55e47e936a0
SHA1

f0a45abca15fb7d4d61089fee09657bf2917c3c3
SHA256

97f62b26f092add912a9e7d6ae1ea042a2065edba6ade5ea8edc0ae742033d17
SHA512

cadc64c383f2994fbdc408ed73ad064f0647eb0b786c03cf6aca4119d8af2e2e93f3cd1597614fa2a5f22475b6cb4eff37a872838921aa9eaf1c1bd2839533b0
SSDEEP

1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ3KUM:ZVxkGOtEvwDpjcao

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-07_08fe2dbb80832ea5b379d55e47e936a0_cryptolocker
- Size
  
  77KB
- MD5
  
  08fe2dbb80832ea5b379d55e47e936a0
- SHA1
  
  f0a45abca15fb7d4d61089fee09657bf2917c3c3
- SHA256
  
  97f62b26f092add912a9e7d6ae1ea042a2065edba6ade5ea8edc0ae742033d17
- SHA512
  
  cadc64c383f2994fbdc408ed73ad064f0647eb0b786c03cf6aca4119d8af2e2e93f3cd1597614fa2a5f22475b6cb4eff37a872838921aa9eaf1c1bd2839533b0
- SSDEEP
  
  1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ3KUM:ZVxkGOtEvwDpjcao
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2