4f7620dc68c3c00c5969b2e6de8989638e70e54b9015fe3faa5ab3ab2f4a262b | Triage

Sharing

General

Target

2024-09-07_d6703b8532041a4d239b7d90eaaffbdf_cryptolocker
Size

39KB
Sample

240907-ms88jszepq
MD5

d6703b8532041a4d239b7d90eaaffbdf
SHA1

a284e58c389742b889e2af206f8681fe3cbef400
SHA256

4f7620dc68c3c00c5969b2e6de8989638e70e54b9015fe3faa5ab3ab2f4a262b
SHA512

ca1c193c040ad6c2b8285e42bfcd95c12c1910fefaf7f4978ecfc0d329837c942de60a1a9dad82718aad07e0b0e878d1653249a4e9b4af366bf5fbe0f23e58cc
SSDEEP

768:fTz7y3lhsT+hs1SQtOOtEvwDpjfAu9+4qN:fT+hsMQMOtEvwDpjoIHO

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-07_d6703b8532041a4d239b7d90eaaffbdf_cryptolocker
- Size
  
  39KB
- MD5
  
  d6703b8532041a4d239b7d90eaaffbdf
- SHA1
  
  a284e58c389742b889e2af206f8681fe3cbef400
- SHA256
  
  4f7620dc68c3c00c5969b2e6de8989638e70e54b9015fe3faa5ab3ab2f4a262b
- SHA512
  
  ca1c193c040ad6c2b8285e42bfcd95c12c1910fefaf7f4978ecfc0d329837c942de60a1a9dad82718aad07e0b0e878d1653249a4e9b4af366bf5fbe0f23e58cc
- SSDEEP
  
  768:fTz7y3lhsT+hs1SQtOOtEvwDpjfAu9+4qN:fT+hsMQMOtEvwDpjoIHO
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2