99f1f39c3d99e4a79af3fd8f1ac762de39ecff0ce6ad615c2c2bbd89c7c49242 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-11_b99186447f336de857a3c7d66fe1e827_cryptolocker
Size

79KB
Sample

240911-f7zt4awakg
MD5

b99186447f336de857a3c7d66fe1e827
SHA1

99d8fcaea3c945d8aacb01b17b1efa00994696a4
SHA256

99f1f39c3d99e4a79af3fd8f1ac762de39ecff0ce6ad615c2c2bbd89c7c49242
SHA512

d583e280bcde83cfa426e2e62311775ef3129e277d157d99278f06e52c99f0e95d23cb4dce6f081d7abeb12fec49751e82edf15201c7b2daa8c540180ef5df34
SSDEEP

1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ3KUo:ZVxkGOtEvwDpjcaM

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-11_b99186447f336de857a3c7d66fe1e827_cryptolocker
- Size
  
  79KB
- MD5
  
  b99186447f336de857a3c7d66fe1e827
- SHA1
  
  99d8fcaea3c945d8aacb01b17b1efa00994696a4
- SHA256
  
  99f1f39c3d99e4a79af3fd8f1ac762de39ecff0ce6ad615c2c2bbd89c7c49242
- SHA512
  
  d583e280bcde83cfa426e2e62311775ef3129e277d157d99278f06e52c99f0e95d23cb4dce6f081d7abeb12fec49751e82edf15201c7b2daa8c540180ef5df34
- SSDEEP
  
  1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ3KUo:ZVxkGOtEvwDpjcaM
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2