0f0909f4af2d475a6f45dddf4b6a4e622b14e967504729acecab69be3ab26286 | Triage

Sharing

General

Target

2024-09-19_a2f261496cffb96025370f5904c30745_cryptolocker
Size

45KB
Sample

240919-e5pqns1fln
MD5

a2f261496cffb96025370f5904c30745
SHA1

d7fa66b5d9b615e82f7148e7bc42ef88780ecb8a
SHA256

0f0909f4af2d475a6f45dddf4b6a4e622b14e967504729acecab69be3ab26286
SHA512

882ee76111f2f4d93364670efa3730bdbc97230bb765f4932569b422d39089a24bd4528c6faf71e40617e772a3e5b44a818c6317bb64f960c6d28fc5d4cb0927
SSDEEP

768:V6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpjeJQ7suIlsw92KFXckdF:V6QFElP6n+gMQMOtEvwDpjeJQ7pojakX

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-19_a2f261496cffb96025370f5904c30745_cryptolocker
- Size
  
  45KB
- MD5
  
  a2f261496cffb96025370f5904c30745
- SHA1
  
  d7fa66b5d9b615e82f7148e7bc42ef88780ecb8a
- SHA256
  
  0f0909f4af2d475a6f45dddf4b6a4e622b14e967504729acecab69be3ab26286
- SHA512
  
  882ee76111f2f4d93364670efa3730bdbc97230bb765f4932569b422d39089a24bd4528c6faf71e40617e772a3e5b44a818c6317bb64f960c6d28fc5d4cb0927
- SSDEEP
  
  768:V6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpjeJQ7suIlsw92KFXckdF:V6QFElP6n+gMQMOtEvwDpjeJQ7pojakX
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2