9f21f47181bd384721d82d3755953403e0608f2fd2f03e98dab69c3dee293b01 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-07_e0f361d4ea528fb6935b6af0dddb678c_cryptolocker
Size

47KB
Sample

240907-jjytnsshjd
MD5

e0f361d4ea528fb6935b6af0dddb678c
SHA1

f45e28679ec3aed016d7754a61554b3ba3e90206
SHA256

9f21f47181bd384721d82d3755953403e0608f2fd2f03e98dab69c3dee293b01
SHA512

b546734021e84da814455c64c332583a6f4a2ec87d085d9e1059c4a84f68244050ee79d7bcc2d26250740486e93230716aae894ad82e98c72e7a6c0d7a58e28c
SSDEEP

768:V6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpj/MLaHaMMm2X3dXE:V6QFElP6n+gMQMOtEvwDpjyaHaXrE

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-07_e0f361d4ea528fb6935b6af0dddb678c_cryptolocker
- Size
  
  47KB
- MD5
  
  e0f361d4ea528fb6935b6af0dddb678c
- SHA1
  
  f45e28679ec3aed016d7754a61554b3ba3e90206
- SHA256
  
  9f21f47181bd384721d82d3755953403e0608f2fd2f03e98dab69c3dee293b01
- SHA512
  
  b546734021e84da814455c64c332583a6f4a2ec87d085d9e1059c4a84f68244050ee79d7bcc2d26250740486e93230716aae894ad82e98c72e7a6c0d7a58e28c
- SSDEEP
  
  768:V6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpj/MLaHaMMm2X3dXE:V6QFElP6n+gMQMOtEvwDpjyaHaXrE
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2