be6d378c157845a97620a93cf7df59a88b6d1d2a2a240aef9df933b204ea97ff | Triage

Sharing

General

Target

2024-09-07_37a17a6f9310f32fa968c41f0863752d_cryptolocker
Size

39KB
Sample

240907-awnd2awakn
MD5

37a17a6f9310f32fa968c41f0863752d
SHA1

fb413058c1de4b40aa940e2920477848ceac2326
SHA256

be6d378c157845a97620a93cf7df59a88b6d1d2a2a240aef9df933b204ea97ff
SHA512

67575547fec33bf926d3b01f802082acc20a9fea39bd78176ec7affc87c2181aac7f8f9a7147f7a8fad7aa8f06cda9701b05310c76f3ec76872aa6708b795094
SSDEEP

768:fTz7y3lhsT+hs1SQtOOtEvwDpjfAu9+4qe:fT+hsMQMOtEvwDpjoIHV

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-07_37a17a6f9310f32fa968c41f0863752d_cryptolocker
- Size
  
  39KB
- MD5
  
  37a17a6f9310f32fa968c41f0863752d
- SHA1
  
  fb413058c1de4b40aa940e2920477848ceac2326
- SHA256
  
  be6d378c157845a97620a93cf7df59a88b6d1d2a2a240aef9df933b204ea97ff
- SHA512
  
  67575547fec33bf926d3b01f802082acc20a9fea39bd78176ec7affc87c2181aac7f8f9a7147f7a8fad7aa8f06cda9701b05310c76f3ec76872aa6708b795094
- SSDEEP
  
  768:fTz7y3lhsT+hs1SQtOOtEvwDpjfAu9+4qe:fT+hsMQMOtEvwDpjoIHV
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2