6542673f6f320f9c48ef24f374df3b0fc69c816cf6508e29dbf2fa3a5e751652 | Triage

Sharing

General

Target

2024-09-14_57e1ebbef101e6195c0529e5ca39eedd_cryptolocker
Size

65KB
Sample

240914-y46scathne
MD5

57e1ebbef101e6195c0529e5ca39eedd
SHA1

ad72bca175786d9df91eaa3603e4e84d8499a78f
SHA256

6542673f6f320f9c48ef24f374df3b0fc69c816cf6508e29dbf2fa3a5e751652
SHA512

1332edbe9286835782d63ca85fbb799e6a7d4972843b64c625eb2e24815a3bf0e83c2e9a2f34a491d02b0860bb9a0ced28ac3f0c6d0794a1b1d4921eca8edfb7
SSDEEP

1536:qmbhXDmjr5MOtEvwDpj5cDtKkQZQRKb61vSbgtsihro:BbdDmjr+OtEvwDpjM8r

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-14_57e1ebbef101e6195c0529e5ca39eedd_cryptolocker
- Size
  
  65KB
- MD5
  
  57e1ebbef101e6195c0529e5ca39eedd
- SHA1
  
  ad72bca175786d9df91eaa3603e4e84d8499a78f
- SHA256
  
  6542673f6f320f9c48ef24f374df3b0fc69c816cf6508e29dbf2fa3a5e751652
- SHA512
  
  1332edbe9286835782d63ca85fbb799e6a7d4972843b64c625eb2e24815a3bf0e83c2e9a2f34a491d02b0860bb9a0ced28ac3f0c6d0794a1b1d4921eca8edfb7
- SSDEEP
  
  1536:qmbhXDmjr5MOtEvwDpj5cDtKkQZQRKb61vSbgtsihro:BbdDmjr+OtEvwDpjM8r
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2