4dc4ebc8927e43c2ba92eeea74498a2c44cf8b7bb405c69d6341f94654cd1fa5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-12_d4d50b06cfbed16badd83d879e524b3e_cryptolocker
Size

32KB
Sample

240912-eepmzszeld
MD5

d4d50b06cfbed16badd83d879e524b3e
SHA1

33d78d937b0ad53b0a2744602df509d7cae050d9
SHA256

4dc4ebc8927e43c2ba92eeea74498a2c44cf8b7bb405c69d6341f94654cd1fa5
SHA512

0ab7760d195d31e3d0f20aeedecc97c776ebbaeceab1c1f059791116e4618a8dc045da16d94a2245c3aa28181446fb56597670b6f6ef869cb1329e743162e64f
SSDEEP

384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGOK7R:bG74zYcgT/Ekd0ryfjU1

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-12_d4d50b06cfbed16badd83d879e524b3e_cryptolocker
- Size
  
  32KB
- MD5
  
  d4d50b06cfbed16badd83d879e524b3e
- SHA1
  
  33d78d937b0ad53b0a2744602df509d7cae050d9
- SHA256
  
  4dc4ebc8927e43c2ba92eeea74498a2c44cf8b7bb405c69d6341f94654cd1fa5
- SHA512
  
  0ab7760d195d31e3d0f20aeedecc97c776ebbaeceab1c1f059791116e4618a8dc045da16d94a2245c3aa28181446fb56597670b6f6ef869cb1329e743162e64f
- SSDEEP
  
  384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGOK7R:bG74zYcgT/Ekd0ryfjU1
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2