41dee2660a0b328e25caaaa7dd14621ea473b8b05a4d9a943dd0691a6a6ab93f | Triage

Sharing

General

Target

2024-09-07_92aa70f667f382b1725d43b85cecc9ce_cryptolocker
Size

33KB
Sample

240907-jd5p2asenc
MD5

92aa70f667f382b1725d43b85cecc9ce
SHA1

9964a18803920dfdec5b0cda0b6e53b1099b5359
SHA256

41dee2660a0b328e25caaaa7dd14621ea473b8b05a4d9a943dd0691a6a6ab93f
SHA512

f083092470358581815f957e2c97fdd945483d8d660122b9cdb03516d626876d11ff1c85c9e7c236284e96db94f5fd532020ba9e48a17e3ca6ab1dbf41a95278
SSDEEP

384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGOe:bG74zYcgT/Ekd0ryfjo

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-07_92aa70f667f382b1725d43b85cecc9ce_cryptolocker
- Size
  
  33KB
- MD5
  
  92aa70f667f382b1725d43b85cecc9ce
- SHA1
  
  9964a18803920dfdec5b0cda0b6e53b1099b5359
- SHA256
  
  41dee2660a0b328e25caaaa7dd14621ea473b8b05a4d9a943dd0691a6a6ab93f
- SHA512
  
  f083092470358581815f957e2c97fdd945483d8d660122b9cdb03516d626876d11ff1c85c9e7c236284e96db94f5fd532020ba9e48a17e3ca6ab1dbf41a95278
- SSDEEP
  
  384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGOe:bG74zYcgT/Ekd0ryfjo
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2