1777c99182a77f7309b67c3f1a6b7c3503111420d61d67377a3459542fb102c9 | Triage

Sharing

General

Target

2024-09-19_62a95833eafdb857b227a8ef669cd63e_cryptolocker
Size

38KB
Sample

240919-f64rnatbmj
MD5

62a95833eafdb857b227a8ef669cd63e
SHA1

38161182755b31209aefe170a55cf5e3272326f2
SHA256

1777c99182a77f7309b67c3f1a6b7c3503111420d61d67377a3459542fb102c9
SHA512

8c22a7ababb7b5fedc091b910cb5c9f2e9cd432bfb0a806ce45e0f45fe9cffb1ab543bc68e57ff1fb5b4eeaf5d70bea2344decfeb622be4fbbbf3dbeba8e4b48
SSDEEP

768:fTz7y3lhsT+hs1SQtOOtEvwDpjfAu9+4XYNN:fT+hsMQMOtEvwDpjoIHI3

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-19_62a95833eafdb857b227a8ef669cd63e_cryptolocker
- Size
  
  38KB
- MD5
  
  62a95833eafdb857b227a8ef669cd63e
- SHA1
  
  38161182755b31209aefe170a55cf5e3272326f2
- SHA256
  
  1777c99182a77f7309b67c3f1a6b7c3503111420d61d67377a3459542fb102c9
- SHA512
  
  8c22a7ababb7b5fedc091b910cb5c9f2e9cd432bfb0a806ce45e0f45fe9cffb1ab543bc68e57ff1fb5b4eeaf5d70bea2344decfeb622be4fbbbf3dbeba8e4b48
- SSDEEP
  
  768:fTz7y3lhsT+hs1SQtOOtEvwDpjfAu9+4XYNN:fT+hsMQMOtEvwDpjoIHI3
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2