a2ac79e02b7babdfc8ee686d2f794f4db2b975e5aaa4fe7f4efbdad8fa0f8bd0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-07_59cf09af4d83c943fb298d711e093767_cryptolocker
Size

46KB
Sample

240907-hcv9jazcnr
MD5

59cf09af4d83c943fb298d711e093767
SHA1

b8e0693cf58682acd4591783e1caafaaa7231fe1
SHA256

a2ac79e02b7babdfc8ee686d2f794f4db2b975e5aaa4fe7f4efbdad8fa0f8bd0
SHA512

ee352517699c47fb438190ae244b11fe5e45e3e0e906d8eebd8c44b3e0ea4bd98107ff83f75c2460dca31d3519621a5f21c389afb070b7a251bba16e039df679
SSDEEP

768:bao/2n1TCraU6GD1a4X1XOQ69zbjlAAX5e9zO:bF/y2lFizbR9XwzO

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-07_59cf09af4d83c943fb298d711e093767_cryptolocker
- Size
  
  46KB
- MD5
  
  59cf09af4d83c943fb298d711e093767
- SHA1
  
  b8e0693cf58682acd4591783e1caafaaa7231fe1
- SHA256
  
  a2ac79e02b7babdfc8ee686d2f794f4db2b975e5aaa4fe7f4efbdad8fa0f8bd0
- SHA512
  
  ee352517699c47fb438190ae244b11fe5e45e3e0e906d8eebd8c44b3e0ea4bd98107ff83f75c2460dca31d3519621a5f21c389afb070b7a251bba16e039df679
- SSDEEP
  
  768:bao/2n1TCraU6GD1a4X1XOQ69zbjlAAX5e9zO:bF/y2lFizbR9XwzO
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2