6230f81782efabaa04c19841b8a7069ad55491d9ff292edd22d4a722e536d236 | Triage

Sharing

General

Target

2024-09-11_d7af8da8898dd9f51aa28a53fe46408d_cryptolocker
Size

72KB
Sample

240911-ewdbaascjr
MD5

d7af8da8898dd9f51aa28a53fe46408d
SHA1

838f85726c2bb1f94cf671e1447b2c3dca232700
SHA256

6230f81782efabaa04c19841b8a7069ad55491d9ff292edd22d4a722e536d236
SHA512

da756e0ad088f51a981b7daa337d946d44f3f359c27a4338eb63f6d796d9e2dfed7c45196be7d7fb6aa56197711ca4b8c51e1bd43ee80411c04cafcd84d804bc
SSDEEP

768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4ZPsED3VK2+ZtyOjgO4r9vFAg2rq2g1B/RY:vj+jsMQMOtEvwDpj5HZYTjipvF24A

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-11_d7af8da8898dd9f51aa28a53fe46408d_cryptolocker
- Size
  
  72KB
- MD5
  
  d7af8da8898dd9f51aa28a53fe46408d
- SHA1
  
  838f85726c2bb1f94cf671e1447b2c3dca232700
- SHA256
  
  6230f81782efabaa04c19841b8a7069ad55491d9ff292edd22d4a722e536d236
- SHA512
  
  da756e0ad088f51a981b7daa337d946d44f3f359c27a4338eb63f6d796d9e2dfed7c45196be7d7fb6aa56197711ca4b8c51e1bd43ee80411c04cafcd84d804bc
- SSDEEP
  
  768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4ZPsED3VK2+ZtyOjgO4r9vFAg2rq2g1B/RY:vj+jsMQMOtEvwDpj5HZYTjipvF24A
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2