da2cf8f0ddd44f3df673054154c6301d87af5945b4127db57804ca1a471ad10e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-07_db25c510831cdcf5c2ead65919fe99b1_cryptolocker
Size

45KB
Sample

240907-hnaf7szhpk
MD5

db25c510831cdcf5c2ead65919fe99b1
SHA1

0665e43a0cb82db951789d83cd397fbf915e879b
SHA256

da2cf8f0ddd44f3df673054154c6301d87af5945b4127db57804ca1a471ad10e
SHA512

9630882bf805e75f78f632c038b7521948675cacaf41bf8c1e135e6681b5c0e2eeb60755111c60a83dcec81c4138b42fb7f28341b7128958fa14cc6b72d6c3f5
SSDEEP

768:btB9g/WItCSsAGjX7e9N0hunrknljKrCZ:btB9g/xtCSKqf1rksrS

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-07_db25c510831cdcf5c2ead65919fe99b1_cryptolocker
- Size
  
  45KB
- MD5
  
  db25c510831cdcf5c2ead65919fe99b1
- SHA1
  
  0665e43a0cb82db951789d83cd397fbf915e879b
- SHA256
  
  da2cf8f0ddd44f3df673054154c6301d87af5945b4127db57804ca1a471ad10e
- SHA512
  
  9630882bf805e75f78f632c038b7521948675cacaf41bf8c1e135e6681b5c0e2eeb60755111c60a83dcec81c4138b42fb7f28341b7128958fa14cc6b72d6c3f5
- SSDEEP
  
  768:btB9g/WItCSsAGjX7e9N0hunrknljKrCZ:btB9g/xtCSKqf1rksrS
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2