b7bb0b6f4d5a2b317dc15c488e96e7451238fd52e9735dea5462bae7d2c52ff9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-08_708625ec643afd8e0a0fee9a9f265b2e_cryptolocker
Size

92KB
Sample

240908-jdyaystelr
MD5

708625ec643afd8e0a0fee9a9f265b2e
SHA1

177b8d604b9bfbcf6a690eba51dcfcf06c989e87
SHA256

b7bb0b6f4d5a2b317dc15c488e96e7451238fd52e9735dea5462bae7d2c52ff9
SHA512

9a23b44a55c064aad8ee68e7f26cdfc383c01ed10428d5cf5eec9eb584830de793473035b52fb487301163ca01b5f858ca4cd356b413e683a351dd35b3e1b5dc
SSDEEP

1536:vj+jsMQMOtEvwDpj5H8u8rBN6nqEZNi1OkQoOuf:vCjsIOtEvwDpj5H8zPs2

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-08_708625ec643afd8e0a0fee9a9f265b2e_cryptolocker
- Size
  
  92KB
- MD5
  
  708625ec643afd8e0a0fee9a9f265b2e
- SHA1
  
  177b8d604b9bfbcf6a690eba51dcfcf06c989e87
- SHA256
  
  b7bb0b6f4d5a2b317dc15c488e96e7451238fd52e9735dea5462bae7d2c52ff9
- SHA512
  
  9a23b44a55c064aad8ee68e7f26cdfc383c01ed10428d5cf5eec9eb584830de793473035b52fb487301163ca01b5f858ca4cd356b413e683a351dd35b3e1b5dc
- SSDEEP
  
  1536:vj+jsMQMOtEvwDpj5H8u8rBN6nqEZNi1OkQoOuf:vCjsIOtEvwDpj5H8zPs2
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2