d3c67ae184adc328f762840c7a60c270e18f739169b6cc986fd2b15a7fab7105 | Triage

Sharing

General

Target

2024-09-11_23b6e495beabd33735207feaca71d947_cryptolocker
Size

50KB
Sample

240911-d495js1eph
MD5

23b6e495beabd33735207feaca71d947
SHA1

894ef79e076ee6593a9017efc97e1797ccb8f350
SHA256

d3c67ae184adc328f762840c7a60c270e18f739169b6cc986fd2b15a7fab7105
SHA512

5d77bc918aac68ae9f26103afc069ca81c9595b0d09f7c270bae36d337baa8b26efe8650daff0f413a7f0fd971293e2c0b6ce93bcb22a55b3ed1008ecba1c891
SSDEEP

768:26LsoVEeegiZPvEhHSP+gDdQtOOtEvwDpjtMLZdzuqpXsiE8Wq/DpkITu:26Q0ElP6G+gBQMOtEvwDpjgWMl7Tu

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-11_23b6e495beabd33735207feaca71d947_cryptolocker
- Size
  
  50KB
- MD5
  
  23b6e495beabd33735207feaca71d947
- SHA1
  
  894ef79e076ee6593a9017efc97e1797ccb8f350
- SHA256
  
  d3c67ae184adc328f762840c7a60c270e18f739169b6cc986fd2b15a7fab7105
- SHA512
  
  5d77bc918aac68ae9f26103afc069ca81c9595b0d09f7c270bae36d337baa8b26efe8650daff0f413a7f0fd971293e2c0b6ce93bcb22a55b3ed1008ecba1c891
- SSDEEP
  
  768:26LsoVEeegiZPvEhHSP+gDdQtOOtEvwDpjtMLZdzuqpXsiE8Wq/DpkITu:26Q0ElP6G+gBQMOtEvwDpjgWMl7Tu
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2