143f1344ace17f7f6247de9ebbca7fc87416531739100e99ce8fd99d43f08c33 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-12_b67169e98ec7dc664d8fc87e7e9e1317_cryptolocker
Size

47KB
Sample

240912-dgdg3axgnl
MD5

b67169e98ec7dc664d8fc87e7e9e1317
SHA1

e9af1302df16fc1ab7d73289daa457190f8153eb
SHA256

143f1344ace17f7f6247de9ebbca7fc87416531739100e99ce8fd99d43f08c33
SHA512

ec7475a97ef0ba6eb97f9b777520a22331a9c65cc3ea6d934112315cfe33969c8537b2be4dc03456ffd4d8b769d5f283caede77d7671779cf56eda1d32becc01
SSDEEP

384:e/4wODQkzonAYsju5N/surDQtOOtEvwDpjqIGROqS/WccJVJwi2B5oCCM8CLW2VY:79inqyNR/QtOOtEvwDpjBKccJVODvy35

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-12_b67169e98ec7dc664d8fc87e7e9e1317_cryptolocker
- Size
  
  47KB
- MD5
  
  b67169e98ec7dc664d8fc87e7e9e1317
- SHA1
  
  e9af1302df16fc1ab7d73289daa457190f8153eb
- SHA256
  
  143f1344ace17f7f6247de9ebbca7fc87416531739100e99ce8fd99d43f08c33
- SHA512
  
  ec7475a97ef0ba6eb97f9b777520a22331a9c65cc3ea6d934112315cfe33969c8537b2be4dc03456ffd4d8b769d5f283caede77d7671779cf56eda1d32becc01
- SSDEEP
  
  384:e/4wODQkzonAYsju5N/surDQtOOtEvwDpjqIGROqS/WccJVJwi2B5oCCM8CLW2VY:79inqyNR/QtOOtEvwDpjBKccJVODvy35
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2