ab00d853e46965bcaaf21ac39d35243826f7efabf99b9cc1b82e03802154a6d2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-08_f4e2a51d2ea8812434f46a32e00b671e_cryptolocker
Size

75KB
Sample

240908-jjlt4stgnk
MD5

f4e2a51d2ea8812434f46a32e00b671e
SHA1

692c50a1544333ce6011a3fa8dd1de9fb4a258f7
SHA256

ab00d853e46965bcaaf21ac39d35243826f7efabf99b9cc1b82e03802154a6d2
SHA512

70b77886e12c1b3c8b6b6f3f53438062438a115a7c15e77b5cf9e418d5d080925de75fd9582bb4351967959225369ee109baca1ceeab25f8d36ae8a956f66ed1
SSDEEP

768:u6LsoEEeegiZPvEhHSG+gZgtOOtEvwDpjeY10Y/YMsMk:u6QFElP6n+gWMOtEvwDpjJGYQbH

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-08_f4e2a51d2ea8812434f46a32e00b671e_cryptolocker
- Size
  
  75KB
- MD5
  
  f4e2a51d2ea8812434f46a32e00b671e
- SHA1
  
  692c50a1544333ce6011a3fa8dd1de9fb4a258f7
- SHA256
  
  ab00d853e46965bcaaf21ac39d35243826f7efabf99b9cc1b82e03802154a6d2
- SHA512
  
  70b77886e12c1b3c8b6b6f3f53438062438a115a7c15e77b5cf9e418d5d080925de75fd9582bb4351967959225369ee109baca1ceeab25f8d36ae8a956f66ed1
- SSDEEP
  
  768:u6LsoEEeegiZPvEhHSG+gZgtOOtEvwDpjeY10Y/YMsMk:u6QFElP6n+gWMOtEvwDpjJGYQbH
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2