982cdc9b4939f3b00dfe41bd915e809e55bdadc710153537cdd71c7789281c11 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-15_3414b092d06205cd0bf57161f30c0077_cryptolocker
Size

34KB
Sample

240915-le9rgswgmb
MD5

3414b092d06205cd0bf57161f30c0077
SHA1

2ea2f0016b6e8d330cf8dcbc00634e17eb04a2e2
SHA256

982cdc9b4939f3b00dfe41bd915e809e55bdadc710153537cdd71c7789281c11
SHA512

dfcbcc34253893d879b6302b127945e4b87723ff172bb7760d41908179983367ce5aa2b9f1bb1a23ee2fb1d6faabe3dbc09045ad1a1c87f991c9b6f103c8808d
SSDEEP

384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGXvJF35lH:bG74zYcgT/Ekd0ryfjkbL

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-15_3414b092d06205cd0bf57161f30c0077_cryptolocker
- Size
  
  34KB
- MD5
  
  3414b092d06205cd0bf57161f30c0077
- SHA1
  
  2ea2f0016b6e8d330cf8dcbc00634e17eb04a2e2
- SHA256
  
  982cdc9b4939f3b00dfe41bd915e809e55bdadc710153537cdd71c7789281c11
- SHA512
  
  dfcbcc34253893d879b6302b127945e4b87723ff172bb7760d41908179983367ce5aa2b9f1bb1a23ee2fb1d6faabe3dbc09045ad1a1c87f991c9b6f103c8808d
- SSDEEP
  
  384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGXvJF35lH:bG74zYcgT/Ekd0ryfjkbL
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2