1f26c202eb9e05f4bf05e48103318ee205a9556fe8ea59515e84c4b62ff80079 | Triage

Sharing

General

Target

2024-09-19_87048789d1d0ad8aaeabc271b01d3501_cryptolocker
Size

36KB
Sample

240919-d4fkyayepa
MD5

87048789d1d0ad8aaeabc271b01d3501
SHA1

3ccc9f831289b909aa2bfd8c5d0e57cd03edce83
SHA256

1f26c202eb9e05f4bf05e48103318ee205a9556fe8ea59515e84c4b62ff80079
SHA512

0aa425515a885a4f84d08540c0204ee00a18e03bd901bcd409f117c46fae586cdc68086f880798e774dff6b3fd16e950c380483d33f0abc9730f3f0c7fe6c42e
SSDEEP

768:b7o/2n1TCraU6GD1a4X0WcO+wMVm+slAMSV:bc/y2lkF0+BdV

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-19_87048789d1d0ad8aaeabc271b01d3501_cryptolocker
- Size
  
  36KB
- MD5
  
  87048789d1d0ad8aaeabc271b01d3501
- SHA1
  
  3ccc9f831289b909aa2bfd8c5d0e57cd03edce83
- SHA256
  
  1f26c202eb9e05f4bf05e48103318ee205a9556fe8ea59515e84c4b62ff80079
- SHA512
  
  0aa425515a885a4f84d08540c0204ee00a18e03bd901bcd409f117c46fae586cdc68086f880798e774dff6b3fd16e950c380483d33f0abc9730f3f0c7fe6c42e
- SSDEEP
  
  768:b7o/2n1TCraU6GD1a4X0WcO+wMVm+slAMSV:bc/y2lkF0+BdV
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2