f8ea0c7c1b72b43796dec1261507f13975db006d1df3607a7cb042836d6f2ac2 | Triage

Sharing

General

Target

2024-09-19_9df0a57624d133f688991ec815f96c87_cryptolocker
Size

43KB
Sample

240919-d5f8vsygrq
MD5

9df0a57624d133f688991ec815f96c87
SHA1

21f8f05ad22cfefb32bf74a0844ac8d3d8f06c07
SHA256

f8ea0c7c1b72b43796dec1261507f13975db006d1df3607a7cb042836d6f2ac2
SHA512

ab0f8410377c9c467c01f820dcddf6986d0feb1e558fe9537d9f8d085d3aea6e1553b6c4c6527f21db2e2a66c0f7edf3e58894ac4dc74d80e36b978e690139b3
SSDEEP

768:wHGGaSawqnwjRQ6ESlmFOsPoOdQtOOtEvwDpjm6WaJIOc+UPPEkL7vF1Tv:YGzl5wjRQBBOsP1QMOtEvwDpjgarrkLv

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-19_9df0a57624d133f688991ec815f96c87_cryptolocker
- Size
  
  43KB
- MD5
  
  9df0a57624d133f688991ec815f96c87
- SHA1
  
  21f8f05ad22cfefb32bf74a0844ac8d3d8f06c07
- SHA256
  
  f8ea0c7c1b72b43796dec1261507f13975db006d1df3607a7cb042836d6f2ac2
- SHA512
  
  ab0f8410377c9c467c01f820dcddf6986d0feb1e558fe9537d9f8d085d3aea6e1553b6c4c6527f21db2e2a66c0f7edf3e58894ac4dc74d80e36b978e690139b3
- SSDEEP
  
  768:wHGGaSawqnwjRQ6ESlmFOsPoOdQtOOtEvwDpjm6WaJIOc+UPPEkL7vF1Tv:YGzl5wjRQBBOsP1QMOtEvwDpjgarrkLv
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2