4537c8a1acdde8200b63f73e837bd03d67c6bfefa71f1318a6f6a9342b78686f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-15_0d036eb2f515450d5c5a99d3d2133c8b_cryptolocker
Size

45KB
Sample

240915-mf9zbazcjq
MD5

0d036eb2f515450d5c5a99d3d2133c8b
SHA1

a96dd43babe1bcc7c13b943becc8e66b0cb3e523
SHA256

4537c8a1acdde8200b63f73e837bd03d67c6bfefa71f1318a6f6a9342b78686f
SHA512

71086a16ff1b9857bbcbd1fb9f923bff200fe2b81316afb62ba464c6459385456dfc21cf1447a5f2dfc8ad5574b0fd131b0484bc552f21701c4325a7a838ae84
SSDEEP

768:P6LsoEEeegiZPvEhHS5+Mh/QtOOtEvwDpjBpaD3TUogs/VXpAP+o:P6QFElP6k+MRQMOtEvwDpjBQpVXO

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-15_0d036eb2f515450d5c5a99d3d2133c8b_cryptolocker
- Size
  
  45KB
- MD5
  
  0d036eb2f515450d5c5a99d3d2133c8b
- SHA1
  
  a96dd43babe1bcc7c13b943becc8e66b0cb3e523
- SHA256
  
  4537c8a1acdde8200b63f73e837bd03d67c6bfefa71f1318a6f6a9342b78686f
- SHA512
  
  71086a16ff1b9857bbcbd1fb9f923bff200fe2b81316afb62ba464c6459385456dfc21cf1447a5f2dfc8ad5574b0fd131b0484bc552f21701c4325a7a838ae84
- SSDEEP
  
  768:P6LsoEEeegiZPvEhHS5+Mh/QtOOtEvwDpjBpaD3TUogs/VXpAP+o:P6QFElP6k+MRQMOtEvwDpjBQpVXO
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2