40df0337c19f50bd897fbb22b6a8e23bb2f9ca1f38fc9886fb621e8fd1fa3b88 | Triage

Sharing

General

Target

2024-09-12_79caa573ac0af84f31af3ac3fa0178e4_cryptolocker
Size

79KB
Sample

240912-d69xkazbja
MD5

79caa573ac0af84f31af3ac3fa0178e4
SHA1

c1b5ab1a82b24f6b3911c77d711dac8a6f49507d
SHA256

40df0337c19f50bd897fbb22b6a8e23bb2f9ca1f38fc9886fb621e8fd1fa3b88
SHA512

11207019b9aeefe0ad59eaaed74b9c6561d4aadb2c639f95aa2fee4d2ca420f1d2d853b08d14d1037b15b72b9768b3898407bec7e95cba675e439c898a3749a3
SSDEEP

1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ3KUs:ZVxkGOtEvwDpjcao

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-12_79caa573ac0af84f31af3ac3fa0178e4_cryptolocker
- Size
  
  79KB
- MD5
  
  79caa573ac0af84f31af3ac3fa0178e4
- SHA1
  
  c1b5ab1a82b24f6b3911c77d711dac8a6f49507d
- SHA256
  
  40df0337c19f50bd897fbb22b6a8e23bb2f9ca1f38fc9886fb621e8fd1fa3b88
- SHA512
  
  11207019b9aeefe0ad59eaaed74b9c6561d4aadb2c639f95aa2fee4d2ca420f1d2d853b08d14d1037b15b72b9768b3898407bec7e95cba675e439c898a3749a3
- SSDEEP
  
  1536:ZzFbxmLPWQMOtEvwDpj386Sj/WprgJN6tZdOyJ3KUs:ZVxkGOtEvwDpjcao
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2