3cb0c3bee0b9a6869c926816b86de0d3f7efa87e9c705f60e6619b5bd13a2237 | Triage

Sharing

General

Target

2024-09-07_abca9bbdec7a6a535f1495cec4a5dc91_cryptolocker
Size

48KB
Sample

240907-cg6ceazclm
MD5

abca9bbdec7a6a535f1495cec4a5dc91
SHA1

83a55336d0d02acfffdbbf32660dcef967cce850
SHA256

3cb0c3bee0b9a6869c926816b86de0d3f7efa87e9c705f60e6619b5bd13a2237
SHA512

bf42760f8a827d0a57c8946e05d736118f2c873883855cf24b6ffa5cf078f84233e2c506216eae8ca648d1752f3718c61151446097373c667405c333ccc3785e
SSDEEP

768:y6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpjbXOQ69zbjlAAX5e9zrk:y6QFElP6n+gMQMOtEvwDpjbizbR9Xwzo

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-07_abca9bbdec7a6a535f1495cec4a5dc91_cryptolocker
- Size
  
  48KB
- MD5
  
  abca9bbdec7a6a535f1495cec4a5dc91
- SHA1
  
  83a55336d0d02acfffdbbf32660dcef967cce850
- SHA256
  
  3cb0c3bee0b9a6869c926816b86de0d3f7efa87e9c705f60e6619b5bd13a2237
- SHA512
  
  bf42760f8a827d0a57c8946e05d736118f2c873883855cf24b6ffa5cf078f84233e2c506216eae8ca648d1752f3718c61151446097373c667405c333ccc3785e
- SSDEEP
  
  768:y6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpjbXOQ69zbjlAAX5e9zrk:y6QFElP6n+gMQMOtEvwDpjbizbR9Xwzo
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2