e40a079e314cd2a24caff9cea89d73be9815bbdca7d54c5583988bb2b3e46ac8 | Triage

Sharing

General

Target

2024-09-19_ef42149e822a5737d78a3ff65e098638_cryptolocker
Size

46KB
Sample

240919-ebezdazajd
MD5

ef42149e822a5737d78a3ff65e098638
SHA1

097ccb4d3cb9db69b5273cd5b9cfce657933239a
SHA256

e40a079e314cd2a24caff9cea89d73be9815bbdca7d54c5583988bb2b3e46ac8
SHA512

9903be78775c8e0e3579d03aa453c117e136d528ff528e7015afafd2428fa971366f5cd470047c6ce0d92f9da1b0d1cc86e9cf523655265fc66e893c2c151fe1
SSDEEP

768:qmOKYQDf5XdrDmjr5tOOtEvwDpjAajFEitQbDmoSQCVUBJUkQqAHBIG05W2MoLL3:qmbhXDmjr5MOtEvwDpj5cDtKkQZQx

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-19_ef42149e822a5737d78a3ff65e098638_cryptolocker
- Size
  
  46KB
- MD5
  
  ef42149e822a5737d78a3ff65e098638
- SHA1
  
  097ccb4d3cb9db69b5273cd5b9cfce657933239a
- SHA256
  
  e40a079e314cd2a24caff9cea89d73be9815bbdca7d54c5583988bb2b3e46ac8
- SHA512
  
  9903be78775c8e0e3579d03aa453c117e136d528ff528e7015afafd2428fa971366f5cd470047c6ce0d92f9da1b0d1cc86e9cf523655265fc66e893c2c151fe1
- SSDEEP
  
  768:qmOKYQDf5XdrDmjr5tOOtEvwDpjAajFEitQbDmoSQCVUBJUkQqAHBIG05W2MoLL3:qmbhXDmjr5MOtEvwDpj5cDtKkQZQx
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2