c280dfc21cced11b2212e2854ba403073aa99991e6b409527cd87276f371c653 | Triage

Sharing

General

Target

2024-09-07_d8c4af34cf12d0ce0082d6ce2efa3fe9_cryptolocker
Size

35KB
Sample

240907-jhxj8asgme
MD5

d8c4af34cf12d0ce0082d6ce2efa3fe9
SHA1

2581d13dc6010176c8e3d0c4902a5cd110eea055
SHA256

c280dfc21cced11b2212e2854ba403073aa99991e6b409527cd87276f371c653
SHA512

bd3ee633e407b293a4b9368296d4330f5b6c422db0d928fda096efa3aeccdebd2085fa72f6d1389ae53838a758d57a6cf0f11b4ec95c4180d787b8d19b78a56e
SSDEEP

384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGXuadQGs7:bG74zYcgT/Ekd0ryfjHGs7

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-07_d8c4af34cf12d0ce0082d6ce2efa3fe9_cryptolocker
- Size
  
  35KB
- MD5
  
  d8c4af34cf12d0ce0082d6ce2efa3fe9
- SHA1
  
  2581d13dc6010176c8e3d0c4902a5cd110eea055
- SHA256
  
  c280dfc21cced11b2212e2854ba403073aa99991e6b409527cd87276f371c653
- SHA512
  
  bd3ee633e407b293a4b9368296d4330f5b6c422db0d928fda096efa3aeccdebd2085fa72f6d1389ae53838a758d57a6cf0f11b4ec95c4180d787b8d19b78a56e
- SSDEEP
  
  384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGXuadQGs7:bG74zYcgT/Ekd0ryfjHGs7
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2