c0b010a529fbefd6d7914bbe701c25cc2845bcbbc084fd0571f714625d3d8e86 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-07_a656249036153a97c8b6518c7d715569_cryptolocker
Size

37KB
Sample

240907-bvnh3sxhlm
MD5

a656249036153a97c8b6518c7d715569
SHA1

deeb1b56310a2f42d8bb39e0bc0687e8a445a87c
SHA256

c0b010a529fbefd6d7914bbe701c25cc2845bcbbc084fd0571f714625d3d8e86
SHA512

06eba968bcfccdbfccef770e8cd3ec58199f76a2823e9fb19edb514795e50241c312c8fc5daace0a9b8a5afc280d9333deeccf9437f2deb2014b22de6fca7fde
SSDEEP

768:b7o/2n1TCraU6GD1a4X0WcO+wMVm+slAMC:bc/y2lkF0+BV

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-07_a656249036153a97c8b6518c7d715569_cryptolocker
- Size
  
  37KB
- MD5
  
  a656249036153a97c8b6518c7d715569
- SHA1
  
  deeb1b56310a2f42d8bb39e0bc0687e8a445a87c
- SHA256
  
  c0b010a529fbefd6d7914bbe701c25cc2845bcbbc084fd0571f714625d3d8e86
- SHA512
  
  06eba968bcfccdbfccef770e8cd3ec58199f76a2823e9fb19edb514795e50241c312c8fc5daace0a9b8a5afc280d9333deeccf9437f2deb2014b22de6fca7fde
- SSDEEP
  
  768:b7o/2n1TCraU6GD1a4X0WcO+wMVm+slAMC:bc/y2lkF0+BV
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2