c266c6c685d24dff20deb9056855e85a8480736bebf3b7a8f2550666a1881427 | Triage

Sharing

General

Target

2024-09-15_558038171a49b1a0ad92d272c1a61722_cryptolocker
Size

44KB
Sample

240915-mmscvayhnc
MD5

558038171a49b1a0ad92d272c1a61722
SHA1

444a37eb1c72167f9e5649b2cd32c7385425f919
SHA256

c266c6c685d24dff20deb9056855e85a8480736bebf3b7a8f2550666a1881427
SHA512

3837932b932e169c024180d7311de252bf941c84fd2bafa062452dac285a242adeb5300c915b3d154756de6cc53578745158789b57755c1a748e7e8212357ea0
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaac4HK/wSvuQTCyD/95WQqA:X6QFElP6n+gJQMOtEvwDpjBsYK/fbDF/

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-15_558038171a49b1a0ad92d272c1a61722_cryptolocker
- Size
  
  44KB
- MD5
  
  558038171a49b1a0ad92d272c1a61722
- SHA1
  
  444a37eb1c72167f9e5649b2cd32c7385425f919
- SHA256
  
  c266c6c685d24dff20deb9056855e85a8480736bebf3b7a8f2550666a1881427
- SHA512
  
  3837932b932e169c024180d7311de252bf941c84fd2bafa062452dac285a242adeb5300c915b3d154756de6cc53578745158789b57755c1a748e7e8212357ea0
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBaac4HK/wSvuQTCyD/95WQqA:X6QFElP6n+gJQMOtEvwDpjBsYK/fbDF/
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2