4e54b8641742caa68193ef3f241ca3ca5c86a745ed63c8b4840abd99d22d494f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-08_9695f05df375404082d4402a23721c1e_cryptolocker
Size

47KB
Sample

240908-ddmlkatckb
MD5

9695f05df375404082d4402a23721c1e
SHA1

44dbc7312b4063b3c5f4bb8045c1ee9fcf8b8d54
SHA256

4e54b8641742caa68193ef3f241ca3ca5c86a745ed63c8b4840abd99d22d494f
SHA512

9bc1c798a8d1b87f6104f101f5b4e6d2e34b4997f007beda01cfcf0a5ade8c2d187917104d2d00128a87205a573ea14acaf877031db7bd059eaf80665cf36b92
SSDEEP

768:y6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpjbXOQ69zbjlAAX5e9zr7o:y6QFElP6n+gMQMOtEvwDpjbizbR9Xwzw

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-08_9695f05df375404082d4402a23721c1e_cryptolocker
- Size
  
  47KB
- MD5
  
  9695f05df375404082d4402a23721c1e
- SHA1
  
  44dbc7312b4063b3c5f4bb8045c1ee9fcf8b8d54
- SHA256
  
  4e54b8641742caa68193ef3f241ca3ca5c86a745ed63c8b4840abd99d22d494f
- SHA512
  
  9bc1c798a8d1b87f6104f101f5b4e6d2e34b4997f007beda01cfcf0a5ade8c2d187917104d2d00128a87205a573ea14acaf877031db7bd059eaf80665cf36b92
- SSDEEP
  
  768:y6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpjbXOQ69zbjlAAX5e9zr7o:y6QFElP6n+gMQMOtEvwDpjbizbR9Xwzw
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2