8d89b7b05176bd004e4debe25dfa254473d6f29a9b7d748a1d71fa7b5a8d8edc | Triage

Sharing

General

Target

2024-09-19_ce1372dcad7c58162607a39f841f9886_cryptolocker
Size

34KB
Sample

240919-d8mvtazanq
MD5

ce1372dcad7c58162607a39f841f9886
SHA1

30ad0e63a660ab17fd833b7071c1257b22b26f17
SHA256

8d89b7b05176bd004e4debe25dfa254473d6f29a9b7d748a1d71fa7b5a8d8edc
SHA512

f2508e7239937dc56f78269f4b4299095695877ef64b1713227ab714b17eda3a8fdc452542658154ede05ff758fdf794878fbe73ddfe32586ca22691a52fc346
SSDEEP

384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGXvJIlZ:bG74zYcgT/Ekd0ryfjkCb

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-19_ce1372dcad7c58162607a39f841f9886_cryptolocker
- Size
  
  34KB
- MD5
  
  ce1372dcad7c58162607a39f841f9886
- SHA1
  
  30ad0e63a660ab17fd833b7071c1257b22b26f17
- SHA256
  
  8d89b7b05176bd004e4debe25dfa254473d6f29a9b7d748a1d71fa7b5a8d8edc
- SHA512
  
  f2508e7239937dc56f78269f4b4299095695877ef64b1713227ab714b17eda3a8fdc452542658154ede05ff758fdf794878fbe73ddfe32586ca22691a52fc346
- SSDEEP
  
  384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGXvJIlZ:bG74zYcgT/Ekd0ryfjkCb
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2