0337d9684d13729e6873ad7e07adf48eb58960f3107c75b2b2760a51810fb086 | Triage

Sharing

General

Target

2024-09-19_3cfc0c0af24ca6cd5e6fdc9e8fe87f95_cryptolocker
Size

42KB
Sample

240919-dztxrsycqd
MD5

3cfc0c0af24ca6cd5e6fdc9e8fe87f95
SHA1

16539e00f03245644c6002fb9336b9a9c9f4815f
SHA256

0337d9684d13729e6873ad7e07adf48eb58960f3107c75b2b2760a51810fb086
SHA512

718e12384a6b37358fdb354d5004c43befe6d8aeeabde319c7e37590616b0ecb7d9561742162a3013d8addcc630fdfad29ff3fd99bdde587d0255ee092dc58ca
SSDEEP

768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjLeJAsKuDb7xpt:ZzFbxmLPWQMOtEvwDpjLeJAsKcb7/t

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-19_3cfc0c0af24ca6cd5e6fdc9e8fe87f95_cryptolocker
- Size
  
  42KB
- MD5
  
  3cfc0c0af24ca6cd5e6fdc9e8fe87f95
- SHA1
  
  16539e00f03245644c6002fb9336b9a9c9f4815f
- SHA256
  
  0337d9684d13729e6873ad7e07adf48eb58960f3107c75b2b2760a51810fb086
- SHA512
  
  718e12384a6b37358fdb354d5004c43befe6d8aeeabde319c7e37590616b0ecb7d9561742162a3013d8addcc630fdfad29ff3fd99bdde587d0255ee092dc58ca
- SSDEEP
  
  768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjLeJAsKuDb7xpt:ZzFbxmLPWQMOtEvwDpjLeJAsKcb7/t
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2