fb465a9410c18f20bbf3f1dc39fef7a91a52b63854a2a44901d0d162d9d8e4ad | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-07_025f3d4ebb96a2519ef360aefca1d5d5_cryptolocker
Size

49KB
Sample

240907-b5x59syepk
MD5

025f3d4ebb96a2519ef360aefca1d5d5
SHA1

c45a9369b582b5d81b1eaae1bc07437f61eeb406
SHA256

fb465a9410c18f20bbf3f1dc39fef7a91a52b63854a2a44901d0d162d9d8e4ad
SHA512

b1528fa0149f2f0c6bbeccf68ed21eb753e0ea826ab6fbf144a3e61c3a3398fca8fc0af51331c8441a7bff2c891989e6a3a4b8a10efac60f5607129fc7b34ed9
SSDEEP

768:P6LsoVEeegiZPvEhHSP+gp/QtOOtEvwDpjBBMLZdzuqpXsiE8Wq/DpkcBJX:P6Q0ElP6G+gJQMOtEvwDpjB8WMlfP

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-07_025f3d4ebb96a2519ef360aefca1d5d5_cryptolocker
- Size
  
  49KB
- MD5
  
  025f3d4ebb96a2519ef360aefca1d5d5
- SHA1
  
  c45a9369b582b5d81b1eaae1bc07437f61eeb406
- SHA256
  
  fb465a9410c18f20bbf3f1dc39fef7a91a52b63854a2a44901d0d162d9d8e4ad
- SHA512
  
  b1528fa0149f2f0c6bbeccf68ed21eb753e0ea826ab6fbf144a3e61c3a3398fca8fc0af51331c8441a7bff2c891989e6a3a4b8a10efac60f5607129fc7b34ed9
- SSDEEP
  
  768:P6LsoVEeegiZPvEhHSP+gp/QtOOtEvwDpjBBMLZdzuqpXsiE8Wq/DpkcBJX:P6Q0ElP6G+gJQMOtEvwDpjB8WMlfP
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2