c0a92c269c76122fe1f35f8fe7a640856292e95ed1da3b4ce97250a08f46348d | Triage

Sharing

General

Target

2024-09-19_0e832f02bce1f7baf4941fd1ec34031a_cryptolocker
Size

33KB
Sample

240919-f3dfasshqm
MD5

0e832f02bce1f7baf4941fd1ec34031a
SHA1

611f621a4d2e474843d76bd47a74631545db7bd6
SHA256

c0a92c269c76122fe1f35f8fe7a640856292e95ed1da3b4ce97250a08f46348d
SHA512

4811c65c0cc1b4bf9d0a437260d119708faf58bf9f758fc2e009e252ada238c14921c870cec3bad236a2b687fe339e04f3fa0efe2eea7f9cfe6c4e7db9129003
SSDEEP

384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGOFPO:bG74zYcgT/Ekd0ryfju

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-19_0e832f02bce1f7baf4941fd1ec34031a_cryptolocker
- Size
  
  33KB
- MD5
  
  0e832f02bce1f7baf4941fd1ec34031a
- SHA1
  
  611f621a4d2e474843d76bd47a74631545db7bd6
- SHA256
  
  c0a92c269c76122fe1f35f8fe7a640856292e95ed1da3b4ce97250a08f46348d
- SHA512
  
  4811c65c0cc1b4bf9d0a437260d119708faf58bf9f758fc2e009e252ada238c14921c870cec3bad236a2b687fe339e04f3fa0efe2eea7f9cfe6c4e7db9129003
- SSDEEP
  
  384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGOFPO:bG74zYcgT/Ekd0ryfju
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2