61a03949a6e37cbe46602bf865f3a97c8bb7a4c6ac83cd44c5865267384ca150 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-11_3d88d17ae6d826a586048a923447393d_cryptolocker
Size

77KB
Sample

240911-rtx9wsvhln
MD5

3d88d17ae6d826a586048a923447393d
SHA1

3ed086fd1ba8f63f94dd6f12e911952f04c79129
SHA256

61a03949a6e37cbe46602bf865f3a97c8bb7a4c6ac83cd44c5865267384ca150
SHA512

cf02623741f7ef6ebec06a9f0096ea12a687ca6e2d06041be2e6eeb2db2d4dbbf878b32ffcdbc7c9096d46445cd7a6b8170e7eb7bb2aa5761fbce9df58aa00b2
SSDEEP

1536:X6QFElP6n+gJQMOtEvwDpjBZYTjipvF2bx1rHsW:X6a+SOtEvwDpjBZYvQd29

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-11_3d88d17ae6d826a586048a923447393d_cryptolocker
- Size
  
  77KB
- MD5
  
  3d88d17ae6d826a586048a923447393d
- SHA1
  
  3ed086fd1ba8f63f94dd6f12e911952f04c79129
- SHA256
  
  61a03949a6e37cbe46602bf865f3a97c8bb7a4c6ac83cd44c5865267384ca150
- SHA512
  
  cf02623741f7ef6ebec06a9f0096ea12a687ca6e2d06041be2e6eeb2db2d4dbbf878b32ffcdbc7c9096d46445cd7a6b8170e7eb7bb2aa5761fbce9df58aa00b2
- SSDEEP
  
  1536:X6QFElP6n+gJQMOtEvwDpjBZYTjipvF2bx1rHsW:X6a+SOtEvwDpjBZYvQd29
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2