e8a7adc82a7b354030da5ab1e3609a8a57ff7bf8a6f359b5cfc719be7e6ceb6f | Triage

Sharing

General

Target

2024-09-13_71bda0032dee7e4d13ed21aafff5d9d0_cryptolocker
Size

29KB
Sample

240913-efejeatbrc
MD5

71bda0032dee7e4d13ed21aafff5d9d0
SHA1

a5197f29c92d7b1370ec4e837bc561ef32a71152
SHA256

e8a7adc82a7b354030da5ab1e3609a8a57ff7bf8a6f359b5cfc719be7e6ceb6f
SHA512

086d34fb6785d5d635d1939b338d223c398b9396ce3ee953a0cfc8f65b1566b7aeb20c23f23b3c296fa001d84a9b090b0cc816e63e49bdbcb95d613967f1fdc9
SSDEEP

768:q0ZziOWwULueOSdE8tOOtEvwDpjeWaJIOc+D:q0zizzOSxMOtEvwDpj/arV

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-13_71bda0032dee7e4d13ed21aafff5d9d0_cryptolocker
- Size
  
  29KB
- MD5
  
  71bda0032dee7e4d13ed21aafff5d9d0
- SHA1
  
  a5197f29c92d7b1370ec4e837bc561ef32a71152
- SHA256
  
  e8a7adc82a7b354030da5ab1e3609a8a57ff7bf8a6f359b5cfc719be7e6ceb6f
- SHA512
  
  086d34fb6785d5d635d1939b338d223c398b9396ce3ee953a0cfc8f65b1566b7aeb20c23f23b3c296fa001d84a9b090b0cc816e63e49bdbcb95d613967f1fdc9
- SSDEEP
  
  768:q0ZziOWwULueOSdE8tOOtEvwDpjeWaJIOc+D:q0zizzOSxMOtEvwDpj/arV
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2