fe9914637e17dc9e6002fae32361d9ae47bdf660038f93d22ef2e52056ce70d5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-15_c54bd8aec6c9ba6253ddfa69251c056f_cryptolocker
Size

44KB
Sample

240915-dcjtaascnb
MD5

c54bd8aec6c9ba6253ddfa69251c056f
SHA1

23c5d456262ba302d9d2b93984a004522e771f04
SHA256

fe9914637e17dc9e6002fae32361d9ae47bdf660038f93d22ef2e52056ce70d5
SHA512

e7c728bd8b98cca867b2fe13d1715331c32d181810a36693cc97397b8de4fdea4e76d4a34f9cdf9b0a828747dc9afc613fab5477dbe8e7a4ff23d9587c4bb4a4
SSDEEP

768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAIie0LHH:bCDOw9aMDooc+vAlXH

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-15_c54bd8aec6c9ba6253ddfa69251c056f_cryptolocker
- Size
  
  44KB
- MD5
  
  c54bd8aec6c9ba6253ddfa69251c056f
- SHA1
  
  23c5d456262ba302d9d2b93984a004522e771f04
- SHA256
  
  fe9914637e17dc9e6002fae32361d9ae47bdf660038f93d22ef2e52056ce70d5
- SHA512
  
  e7c728bd8b98cca867b2fe13d1715331c32d181810a36693cc97397b8de4fdea4e76d4a34f9cdf9b0a828747dc9afc613fab5477dbe8e7a4ff23d9587c4bb4a4
- SSDEEP
  
  768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAIie0LHH:bCDOw9aMDooc+vAlXH
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2