9a089bf24337fe6e5c7da285d8beb2fc12f1459b04e565c6b9de23e2b8af56b8 | Triage

Sharing

General

Target

2024-09-19_75bf087b34ecd5f16b15ae8f73c43131_cryptolocker
Size

45KB
Sample

240919-d27xeaydrh
MD5

75bf087b34ecd5f16b15ae8f73c43131
SHA1

05eb0beefb6f8f938ffcb4e004d7a28a3d746622
SHA256

9a089bf24337fe6e5c7da285d8beb2fc12f1459b04e565c6b9de23e2b8af56b8
SHA512

cf8325f433c917324b1ae1e46f9552602866adc83f9bd5d5bd99b07af19800c1973eda078cece8cefe4f7c1a9a608774b3fed32ed345b991c1d4fb2d89ddfe29
SSDEEP

384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNiJXxXunrkwIxZWQpyK:btB9g/WItCSsAGjX7e9N0hunrknljKrq

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-19_75bf087b34ecd5f16b15ae8f73c43131_cryptolocker
- Size
  
  45KB
- MD5
  
  75bf087b34ecd5f16b15ae8f73c43131
- SHA1
  
  05eb0beefb6f8f938ffcb4e004d7a28a3d746622
- SHA256
  
  9a089bf24337fe6e5c7da285d8beb2fc12f1459b04e565c6b9de23e2b8af56b8
- SHA512
  
  cf8325f433c917324b1ae1e46f9552602866adc83f9bd5d5bd99b07af19800c1973eda078cece8cefe4f7c1a9a608774b3fed32ed345b991c1d4fb2d89ddfe29
- SSDEEP
  
  384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNiJXxXunrkwIxZWQpyK:btB9g/WItCSsAGjX7e9N0hunrknljKrq
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2