ec937a8ff2d99701a30f46f1631298ef50d6932e20a956fcc9c356c4e9bacf27 | Triage

Sharing

General

Target

2024-09-12_4f84de85d333c950b15cb5fece586187_cryptolocker
Size

50KB
Sample

240912-vxehqsvgnl
MD5

4f84de85d333c950b15cb5fece586187
SHA1

581e6c0431d346966704668e63f921bbf5e3cd6e
SHA256

ec937a8ff2d99701a30f46f1631298ef50d6932e20a956fcc9c356c4e9bacf27
SHA512

2e0b08ae9f869e87fa88d6ef7ccff6aa64b879a7eafb671a2d4f149aa16277f39d5656a4fbfa5da56a3579cf58e8b2b78a05827381a8019b5236a1462fe73d79
SSDEEP

768:bIDOw9UiaCHfjnE0Sfa7ilR0p9u6p4ICNBC1SleKAP2o7kCc:bIDOw9a0DwitDZ0leBZ7o

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-12_4f84de85d333c950b15cb5fece586187_cryptolocker
- Size
  
  50KB
- MD5
  
  4f84de85d333c950b15cb5fece586187
- SHA1
  
  581e6c0431d346966704668e63f921bbf5e3cd6e
- SHA256
  
  ec937a8ff2d99701a30f46f1631298ef50d6932e20a956fcc9c356c4e9bacf27
- SHA512
  
  2e0b08ae9f869e87fa88d6ef7ccff6aa64b879a7eafb671a2d4f149aa16277f39d5656a4fbfa5da56a3579cf58e8b2b78a05827381a8019b5236a1462fe73d79
- SSDEEP
  
  768:bIDOw9UiaCHfjnE0Sfa7ilR0p9u6p4ICNBC1SleKAP2o7kCc:bIDOw9a0DwitDZ0leBZ7o
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2