351d1f7107aa2d4434da62fc1b839de81ccbe34c6f37a25255611a39fe79c3b2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-07_6480bc90b2a2823a4361dfc321181956_cryptolocker
Size

32KB
Sample

240907-bcqwgswhnb
MD5

6480bc90b2a2823a4361dfc321181956
SHA1

18fbbc0ac74d4c1de2d0b09b78785609c2e88ba7
SHA256

351d1f7107aa2d4434da62fc1b839de81ccbe34c6f37a25255611a39fe79c3b2
SHA512

eb635c99f694921d1b0a4ffda15d21faa195c9a89bedd6a45c4a62c78eaf9346af6351c4efd93f62b1e98e6387e003b2aee9e860d813453304726a0e60241619
SSDEEP

384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzo6cJ3vdoO:bAvJCYOOvbRPDEgXRcJv

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-07_6480bc90b2a2823a4361dfc321181956_cryptolocker
- Size
  
  32KB
- MD5
  
  6480bc90b2a2823a4361dfc321181956
- SHA1
  
  18fbbc0ac74d4c1de2d0b09b78785609c2e88ba7
- SHA256
  
  351d1f7107aa2d4434da62fc1b839de81ccbe34c6f37a25255611a39fe79c3b2
- SHA512
  
  eb635c99f694921d1b0a4ffda15d21faa195c9a89bedd6a45c4a62c78eaf9346af6351c4efd93f62b1e98e6387e003b2aee9e860d813453304726a0e60241619
- SSDEEP
  
  384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzo6cJ3vdoO:bAvJCYOOvbRPDEgXRcJv
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2