71bbee6d7444c9f2a14ab590d60d5c868b9e9c4dcd40d044f32b7fc5c85e83df | Triage

Sharing

General

Target

2024-09-19_f4e5977c33799042b1102eb0ac46e5ba_cryptolocker
Size

39KB
Sample

240919-c4pyyawhmq
MD5

f4e5977c33799042b1102eb0ac46e5ba
SHA1

8e2cea7d94a1ee8db7f960051fa4df5970830baa
SHA256

71bbee6d7444c9f2a14ab590d60d5c868b9e9c4dcd40d044f32b7fc5c85e83df
SHA512

246d97848224bb5d0b3028a182bac191a83796521810f84c612278bfa46b97ede62471dc437b4db92cb3c338ac895a806a7f26378e275f64529a10e33ce1e996
SSDEEP

768:Kf1K2exg2kBwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZsBGGp/YIm7wm0UpaS:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XW

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-19_f4e5977c33799042b1102eb0ac46e5ba_cryptolocker
- Size
  
  39KB
- MD5
  
  f4e5977c33799042b1102eb0ac46e5ba
- SHA1
  
  8e2cea7d94a1ee8db7f960051fa4df5970830baa
- SHA256
  
  71bbee6d7444c9f2a14ab590d60d5c868b9e9c4dcd40d044f32b7fc5c85e83df
- SHA512
  
  246d97848224bb5d0b3028a182bac191a83796521810f84c612278bfa46b97ede62471dc437b4db92cb3c338ac895a806a7f26378e275f64529a10e33ce1e996
- SSDEEP
  
  768:Kf1K2exg2kBwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZsBGGp/YIm7wm0UpaS:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XW
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2