564907fe6bf34e1644505456c8eba3786556422fd5f3311fccff5f1a505a7756 | Triage

Sharing

General

Target

2024-09-19_29efa162813b89eb458e92c9683a6618_cryptolocker
Size

35KB
Sample

240919-f4k7jatakm
MD5

29efa162813b89eb458e92c9683a6618
SHA1

68bcd760c773cdab5e592c25b345fc09bf54bee3
SHA256

564907fe6bf34e1644505456c8eba3786556422fd5f3311fccff5f1a505a7756
SHA512

65ae7267bc89526631b2eb7a7a565a136bb55023c8acbcedbd44677321f321593b0c78853d69c0e5218401cc2f4dac21fc77b01c99d11f2961e005abafbe3868
SSDEEP

768:bxNQIE0eBhkL2Fo1CCwgfjOg9Arbkzos5jmU0:bxNrC7kYo1Fxf2rYPL0

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-19_29efa162813b89eb458e92c9683a6618_cryptolocker
- Size
  
  35KB
- MD5
  
  29efa162813b89eb458e92c9683a6618
- SHA1
  
  68bcd760c773cdab5e592c25b345fc09bf54bee3
- SHA256
  
  564907fe6bf34e1644505456c8eba3786556422fd5f3311fccff5f1a505a7756
- SHA512
  
  65ae7267bc89526631b2eb7a7a565a136bb55023c8acbcedbd44677321f321593b0c78853d69c0e5218401cc2f4dac21fc77b01c99d11f2961e005abafbe3868
- SSDEEP
  
  768:bxNQIE0eBhkL2Fo1CCwgfjOg9Arbkzos5jmU0:bxNrC7kYo1Fxf2rYPL0
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2