8da271c2e8b8413f878acff365cb4fe2bfb0e34de3261e209510f72ac2956702 | Triage

Sharing

General

Target

2024-09-19_9f07d7132ce5f0039cd0bbba5a6313ee_cryptolocker
Size

42KB
Sample

240919-e5g1ts1fkq
MD5

9f07d7132ce5f0039cd0bbba5a6313ee
SHA1

3b3b8b194fe6e54dab75978b9be91ca9a79e26b3
SHA256

8da271c2e8b8413f878acff365cb4fe2bfb0e34de3261e209510f72ac2956702
SHA512

fbb907677dc9e3ec3a9d42f7bf722654b16b657c60c9654d4717ad2a82a5c97e4f553d1e28e29f1391274ebf6898266263826f93f39bf7b60a920b0a802aa621
SSDEEP

768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjLeJAsKuDb7xp5:ZzFbxmLPWQMOtEvwDpjLeJAsKcb7/5

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-19_9f07d7132ce5f0039cd0bbba5a6313ee_cryptolocker
- Size
  
  42KB
- MD5
  
  9f07d7132ce5f0039cd0bbba5a6313ee
- SHA1
  
  3b3b8b194fe6e54dab75978b9be91ca9a79e26b3
- SHA256
  
  8da271c2e8b8413f878acff365cb4fe2bfb0e34de3261e209510f72ac2956702
- SHA512
  
  fbb907677dc9e3ec3a9d42f7bf722654b16b657c60c9654d4717ad2a82a5c97e4f553d1e28e29f1391274ebf6898266263826f93f39bf7b60a920b0a802aa621
- SSDEEP
  
  768:UEEmoQDj/xnMp+yptndwe/PWQtOOtEvwDpjLeJAsKuDb7xp5:ZzFbxmLPWQMOtEvwDpjLeJAsKcb7/5
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2