ac10191714be3bc51c01e2d822ed340bbf7a5bd1f6cf2e880c74b4af0a485c0a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-11_a87cb1dad96a55f12f2c685f5536ccce_cryptolocker
Size

47KB
Sample

240911-w7sc1swbqr
MD5

a87cb1dad96a55f12f2c685f5536ccce
SHA1

22e50bf2708f9100f8b516956bc7ff3a32c8e7e8
SHA256

ac10191714be3bc51c01e2d822ed340bbf7a5bd1f6cf2e880c74b4af0a485c0a
SHA512

b8e24f134c058d2e900555687f2813fccce5ae1e5e2e9aa886e1e05dbcf1a9d5954ebbda7645c89e258c3465a3bee91c21f4c0096e6baf84ffe94b4dfd5a5886
SSDEEP

768:V6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpj/MLaHaMMm2X3dXS:V6QFElP6n+gMQMOtEvwDpjyaHaXrS

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-11_a87cb1dad96a55f12f2c685f5536ccce_cryptolocker
- Size
  
  47KB
- MD5
  
  a87cb1dad96a55f12f2c685f5536ccce
- SHA1
  
  22e50bf2708f9100f8b516956bc7ff3a32c8e7e8
- SHA256
  
  ac10191714be3bc51c01e2d822ed340bbf7a5bd1f6cf2e880c74b4af0a485c0a
- SHA512
  
  b8e24f134c058d2e900555687f2813fccce5ae1e5e2e9aa886e1e05dbcf1a9d5954ebbda7645c89e258c3465a3bee91c21f4c0096e6baf84ffe94b4dfd5a5886
- SSDEEP
  
  768:V6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpj/MLaHaMMm2X3dXS:V6QFElP6n+gMQMOtEvwDpjyaHaXrS
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2