0857294c34233c5eab14eefec020af791bd1fd057ed216fcb31e410c7abf69ba | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-14_1669cec4123fbc51a75b4d58c4b445e9_cryptolocker
Size

51KB
Sample

240914-3b53kasfqg
MD5

1669cec4123fbc51a75b4d58c4b445e9
SHA1

ff54b8d7a6cf0b7bd9078ef472d83f386f8847fd
SHA256

0857294c34233c5eab14eefec020af791bd1fd057ed216fcb31e410c7abf69ba
SHA512

ecd6246188851a13fb1fa2b0df2537f1b0c4c9d15e3ab5e4597aa2f21ca0f2402e5bb4da44bf9e5c23b69bde00aa018180254d22c084427433f9a1c04186ae0f
SSDEEP

768:OQz7yVEhs9+4OR7tOOtEvwDpjLHqPhqlcnvgpnY1n9y:Oj+1NMOtEvwDpjr8hgpY19y

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-14_1669cec4123fbc51a75b4d58c4b445e9_cryptolocker
- Size
  
  51KB
- MD5
  
  1669cec4123fbc51a75b4d58c4b445e9
- SHA1
  
  ff54b8d7a6cf0b7bd9078ef472d83f386f8847fd
- SHA256
  
  0857294c34233c5eab14eefec020af791bd1fd057ed216fcb31e410c7abf69ba
- SHA512
  
  ecd6246188851a13fb1fa2b0df2537f1b0c4c9d15e3ab5e4597aa2f21ca0f2402e5bb4da44bf9e5c23b69bde00aa018180254d22c084427433f9a1c04186ae0f
- SSDEEP
  
  768:OQz7yVEhs9+4OR7tOOtEvwDpjLHqPhqlcnvgpnY1n9y:Oj+1NMOtEvwDpjr8hgpY19y
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2