b2a41b59e7e918912579564119d5cce4ba44ef071645ef8d94ab4df479323271 | Triage

Sharing

General

Target

2024-09-19_aa5e8614030c5e0dfbcdaef33e78e40b_cryptolocker
Size

43KB
Sample

240919-f8bhwstbrm
MD5

aa5e8614030c5e0dfbcdaef33e78e40b
SHA1

571a61c6be4c51046f15af9435b4d4e605f24d17
SHA256

b2a41b59e7e918912579564119d5cce4ba44ef071645ef8d94ab4df479323271
SHA512

dda285b42f4d74953fd0c71b74de20ebd6528a221c9a59722abc1be3d9303627c9f2a0a9322b447ff12cdc46e833d8d96ef26491b662e9476b484ea2dae17dae
SSDEEP

768:bgX4zYcgTEu6QOaryfjqDlC6JFbK37Ybnf5nLn:bgGYcA/53GAA6y37Md

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-19_aa5e8614030c5e0dfbcdaef33e78e40b_cryptolocker
- Size
  
  43KB
- MD5
  
  aa5e8614030c5e0dfbcdaef33e78e40b
- SHA1
  
  571a61c6be4c51046f15af9435b4d4e605f24d17
- SHA256
  
  b2a41b59e7e918912579564119d5cce4ba44ef071645ef8d94ab4df479323271
- SHA512
  
  dda285b42f4d74953fd0c71b74de20ebd6528a221c9a59722abc1be3d9303627c9f2a0a9322b447ff12cdc46e833d8d96ef26491b662e9476b484ea2dae17dae
- SSDEEP
  
  768:bgX4zYcgTEu6QOaryfjqDlC6JFbK37Ybnf5nLn:bgGYcA/53GAA6y37Md
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2