16aba74b13cf43d84f3aaa4507fe5864911716316c24838026a2d2b480a86fa2 | Triage

Sharing

General

Target

2024-09-08_1b70fa69abc3c4ede82d34aa2041caae_cryptolocker
Size

83KB
Sample

240908-dyzfvsvfjf
MD5

1b70fa69abc3c4ede82d34aa2041caae
SHA1

8544745e111638d73257fae02815726740afa5fe
SHA256

16aba74b13cf43d84f3aaa4507fe5864911716316c24838026a2d2b480a86fa2
SHA512

8067556165e65e5c77a4c5e738e9867f87ca6ac2fe517b240b2e1c2fe51f6e8b6ddf1dd5126c627c6a4dbf26974c15bdd7a9315e373765dd6e3424cc45b77f60
SSDEEP

1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMr3+:TCjsIOtEvwDpj5HE/OUHnSMY

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-08_1b70fa69abc3c4ede82d34aa2041caae_cryptolocker
- Size
  
  83KB
- MD5
  
  1b70fa69abc3c4ede82d34aa2041caae
- SHA1
  
  8544745e111638d73257fae02815726740afa5fe
- SHA256
  
  16aba74b13cf43d84f3aaa4507fe5864911716316c24838026a2d2b480a86fa2
- SHA512
  
  8067556165e65e5c77a4c5e738e9867f87ca6ac2fe517b240b2e1c2fe51f6e8b6ddf1dd5126c627c6a4dbf26974c15bdd7a9315e373765dd6e3424cc45b77f60
- SSDEEP
  
  1536:Tj+jsMQMOtEvwDpj5HmpJpOUHECgNMo0vp2EMMr3+:TCjsIOtEvwDpj5HE/OUHnSMY
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2