2d5b41d50324683683d2837e6cca249fc10299ef1bc1e9a2a067feff8107d500 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-09_faf8e7d86157ecd867d558fc497a46bc_cryptolocker
Size

37KB
Sample

240909-mq3mzstcqp
MD5

faf8e7d86157ecd867d558fc497a46bc
SHA1

5dfef99ea06c4cae67d93069605ccd4f7f6d9fef
SHA256

2d5b41d50324683683d2837e6cca249fc10299ef1bc1e9a2a067feff8107d500
SHA512

41f43f7bd391e326def85fcd3e1b8ceb66e026bb356967f340bc6f084c93383c1b5a572f1b951c69d593e66413f32a5e4f619c2e73aea099f15f1511cb36bc92
SSDEEP

768:b7o/2n1TCraU6GD1a4X0WcO+wMVm+slAMC:bc/y2lkF0+Bl

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-09_faf8e7d86157ecd867d558fc497a46bc_cryptolocker
- Size
  
  37KB
- MD5
  
  faf8e7d86157ecd867d558fc497a46bc
- SHA1
  
  5dfef99ea06c4cae67d93069605ccd4f7f6d9fef
- SHA256
  
  2d5b41d50324683683d2837e6cca249fc10299ef1bc1e9a2a067feff8107d500
- SHA512
  
  41f43f7bd391e326def85fcd3e1b8ceb66e026bb356967f340bc6f084c93383c1b5a572f1b951c69d593e66413f32a5e4f619c2e73aea099f15f1511cb36bc92
- SSDEEP
  
  768:b7o/2n1TCraU6GD1a4X0WcO+wMVm+slAMC:bc/y2lkF0+Bl
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2