808807b9d41f187fce53d5449b1b594692ab60eec78db0ec453551d7d8841128 | Triage

Sharing

General

Target

2024-09-11_02a3b95f78a14b5435512af85e0d9474_cryptolocker
Size

42KB
Sample

240911-ql7ypasekp
MD5

02a3b95f78a14b5435512af85e0d9474
SHA1

a36b5e2869c6225af43fd029e2010a2674fffac6
SHA256

808807b9d41f187fce53d5449b1b594692ab60eec78db0ec453551d7d8841128
SHA512

3c02eb61f65be4ac1105ee001fb84f6ac6696284b6053f2735f9cd67023592ec1a02081ee725603e51f7b570100e72b806c9689e6e8a7684cb9cf13163b02d82
SSDEEP

768:bA74zYcgT/Ekd0ryfjPIunqpeNswmT3HwnCD:bA6YcA/X6G0W143QE

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-11_02a3b95f78a14b5435512af85e0d9474_cryptolocker
- Size
  
  42KB
- MD5
  
  02a3b95f78a14b5435512af85e0d9474
- SHA1
  
  a36b5e2869c6225af43fd029e2010a2674fffac6
- SHA256
  
  808807b9d41f187fce53d5449b1b594692ab60eec78db0ec453551d7d8841128
- SHA512
  
  3c02eb61f65be4ac1105ee001fb84f6ac6696284b6053f2735f9cd67023592ec1a02081ee725603e51f7b570100e72b806c9689e6e8a7684cb9cf13163b02d82
- SSDEEP
  
  768:bA74zYcgT/Ekd0ryfjPIunqpeNswmT3HwnCD:bA6YcA/X6G0W143QE
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2