f5aaafe348b6aa641352e838f5973294d29affc910280a901e46346bd6839b5b | Triage

Sharing

General

Target

2024-09-12_c954cb7c198024e103e318fcd7c97b73_cryptolocker
Size

39KB
Sample

240912-fztccashra
MD5

c954cb7c198024e103e318fcd7c97b73
SHA1

2fefe77e31d22a187b941da52fea965a5e1e1bb8
SHA256

f5aaafe348b6aa641352e838f5973294d29affc910280a901e46346bd6839b5b
SHA512

7c2cb3de3aa7d9414de5bae31563bb1db7bae53f4b785941584a9df77abfaddf09254e5044d4290617cb9a5c8e7de5c173302511ba324cc38ddfbe1d6f33a0ca
SSDEEP

384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNiJXxXunRSy3LZ:btB9g/WItCSsAGjX7e9N0hunRvt

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-12_c954cb7c198024e103e318fcd7c97b73_cryptolocker
- Size
  
  39KB
- MD5
  
  c954cb7c198024e103e318fcd7c97b73
- SHA1
  
  2fefe77e31d22a187b941da52fea965a5e1e1bb8
- SHA256
  
  f5aaafe348b6aa641352e838f5973294d29affc910280a901e46346bd6839b5b
- SHA512
  
  7c2cb3de3aa7d9414de5bae31563bb1db7bae53f4b785941584a9df77abfaddf09254e5044d4290617cb9a5c8e7de5c173302511ba324cc38ddfbe1d6f33a0ca
- SSDEEP
  
  384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNiJXxXunRSy3LZ:btB9g/WItCSsAGjX7e9N0hunRvt
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2