8bdfa28c05cc70902255a8b7376567e569c87fca08fac9a09cfb10941999c448 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-09_6bf35e0b4fa4d1d33e6fe5549d8cd7ab_cryptolocker
Size

42KB
Sample

240909-y7vt9azfrc
MD5

6bf35e0b4fa4d1d33e6fe5549d8cd7ab
SHA1

b34774fc16ef8ec9adb4ea3687b80176c80f200a
SHA256

8bdfa28c05cc70902255a8b7376567e569c87fca08fac9a09cfb10941999c448
SHA512

ff005c207bb87d621d7e318763b38f740e4bc584e579a133b45c0ca99c5efb10652581efea62f786d3d23236dab6160e0200985c5b8ba9eb6805e9599baf9a34
SSDEEP

768:bA74zYcgT/Ekd0ryfjPIunqpeNswmT3HwnCk:bA6YcA/X6G0W143QL

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-09_6bf35e0b4fa4d1d33e6fe5549d8cd7ab_cryptolocker
- Size
  
  42KB
- MD5
  
  6bf35e0b4fa4d1d33e6fe5549d8cd7ab
- SHA1
  
  b34774fc16ef8ec9adb4ea3687b80176c80f200a
- SHA256
  
  8bdfa28c05cc70902255a8b7376567e569c87fca08fac9a09cfb10941999c448
- SHA512
  
  ff005c207bb87d621d7e318763b38f740e4bc584e579a133b45c0ca99c5efb10652581efea62f786d3d23236dab6160e0200985c5b8ba9eb6805e9599baf9a34
- SSDEEP
  
  768:bA74zYcgT/Ekd0ryfjPIunqpeNswmT3HwnCk:bA6YcA/X6G0W143QL
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2