9a59aa7f63d4c17fbced9f8fa6553e7c83bedc5dbaf68a8e229a93bdb6fbd0ae | Triage

Sharing

General

Target

2024-09-11_fb91a9f7d34b1a3957a66637de21f7e7_cryptolocker
Size

47KB
Sample

240911-e18yrasemk
MD5

fb91a9f7d34b1a3957a66637de21f7e7
SHA1

613032aac81946e0d48e4120c6642913cba99835
SHA256

9a59aa7f63d4c17fbced9f8fa6553e7c83bedc5dbaf68a8e229a93bdb6fbd0ae
SHA512

055b122fd55d3e807b0f8a27849212d373c1d5a13512345e9081a55f2aeeeaa90ef8a637aa985ed3b18b712e60a4b2f6463548af7e751b6b4604d607976dfab9
SSDEEP

768:79inqyNR/QtOOtEvwDpjBKccJVODvy3td:79mqyNhQMOtEvwDpjBzckqtd

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-11_fb91a9f7d34b1a3957a66637de21f7e7_cryptolocker
- Size
  
  47KB
- MD5
  
  fb91a9f7d34b1a3957a66637de21f7e7
- SHA1
  
  613032aac81946e0d48e4120c6642913cba99835
- SHA256
  
  9a59aa7f63d4c17fbced9f8fa6553e7c83bedc5dbaf68a8e229a93bdb6fbd0ae
- SHA512
  
  055b122fd55d3e807b0f8a27849212d373c1d5a13512345e9081a55f2aeeeaa90ef8a637aa985ed3b18b712e60a4b2f6463548af7e751b6b4604d607976dfab9
- SSDEEP
  
  768:79inqyNR/QtOOtEvwDpjBKccJVODvy3td:79mqyNhQMOtEvwDpjBzckqtd
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2