7aaf4629e995677890bea234acba7cc69e0050223e8c5eb8a1bc1d3c3dcb4433 | Triage

Sharing

General

Target

2024-09-09_f1c06efded08dc54e65c51eb9c722676_cryptolocker
Size

33KB
Sample

240909-cd4peayfph
MD5

f1c06efded08dc54e65c51eb9c722676
SHA1

1a5a473bafac78fa9ecd64338e7814bd4557a848
SHA256

7aaf4629e995677890bea234acba7cc69e0050223e8c5eb8a1bc1d3c3dcb4433
SHA512

77383ca7e48796c3e13136e0af2eb3b8b14647a04ef802a2c443cfb7a204e71b69276f10626c5ada36f8faa6067eb05ee81fca0ce00a86166fcc1495052780f9
SSDEEP

384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzo6cJ3vdoR:bAvJCYOOvbRPDEgXRcJU

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-09_f1c06efded08dc54e65c51eb9c722676_cryptolocker
- Size
  
  33KB
- MD5
  
  f1c06efded08dc54e65c51eb9c722676
- SHA1
  
  1a5a473bafac78fa9ecd64338e7814bd4557a848
- SHA256
  
  7aaf4629e995677890bea234acba7cc69e0050223e8c5eb8a1bc1d3c3dcb4433
- SHA512
  
  77383ca7e48796c3e13136e0af2eb3b8b14647a04ef802a2c443cfb7a204e71b69276f10626c5ada36f8faa6067eb05ee81fca0ce00a86166fcc1495052780f9
- SSDEEP
  
  384:bAvMaNGh4z7CG3POOvbRSLoF/F0QU5XYFnufc/zzo6cJ3vdoR:bAvJCYOOvbRPDEgXRcJU
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2