30badaa0648929b2a7d85786c15250d62de970778dba71d453b13a508ced12e0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-13_3114ccdd59bb52efbc51d9f3a4fbc5e0_cryptolocker
Size

30KB
Sample

240913-nmxs1azark
MD5

3114ccdd59bb52efbc51d9f3a4fbc5e0
SHA1

3f83ae42d61825de6c47367c8bcd46b7c2c97dc7
SHA256

30badaa0648929b2a7d85786c15250d62de970778dba71d453b13a508ced12e0
SHA512

2cc0ba16d5e242018411c0c7d352d6cc0fb8a34fb008c68501af251b4eeb62e280b826fb46d72bb4eac3664ae823360537a1e9f7bf2012205458af0e11fee37f
SSDEEP

768:Kf1K2exg2kBwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZsBGGbNAKSjNfU:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XR

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-13_3114ccdd59bb52efbc51d9f3a4fbc5e0_cryptolocker
- Size
  
  30KB
- MD5
  
  3114ccdd59bb52efbc51d9f3a4fbc5e0
- SHA1
  
  3f83ae42d61825de6c47367c8bcd46b7c2c97dc7
- SHA256
  
  30badaa0648929b2a7d85786c15250d62de970778dba71d453b13a508ced12e0
- SHA512
  
  2cc0ba16d5e242018411c0c7d352d6cc0fb8a34fb008c68501af251b4eeb62e280b826fb46d72bb4eac3664ae823360537a1e9f7bf2012205458af0e11fee37f
- SSDEEP
  
  768:Kf1K2exg2kBwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZsBGGbNAKSjNfU:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XR
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2