c5803a90d63deb7027eb9bc23b035f653bceafa5b0777768d9794ff5f22b12ca | Triage

Sharing

General

Target

2024-09-19_b2395a2cc6831608451ce42f08f385ba_cryptolocker
Size

38KB
Sample

240919-f8zwgstald
MD5

b2395a2cc6831608451ce42f08f385ba
SHA1

267047803cb6c6b96b21038c3c8e267b645d9577
SHA256

c5803a90d63deb7027eb9bc23b035f653bceafa5b0777768d9794ff5f22b12ca
SHA512

e312731ea8df3fc252ab870801fedffae39ac570cd0dba8f9221055df452d59af7e27cec0b1699db8bd2a79b3797fff8876e977ba444f359937a72764c887594
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVaD3TP7DFHSU:X6QFElP6n+gJQMOtEvwDpjBmzDIU

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-19_b2395a2cc6831608451ce42f08f385ba_cryptolocker
- Size
  
  38KB
- MD5
  
  b2395a2cc6831608451ce42f08f385ba
- SHA1
  
  267047803cb6c6b96b21038c3c8e267b645d9577
- SHA256
  
  c5803a90d63deb7027eb9bc23b035f653bceafa5b0777768d9794ff5f22b12ca
- SHA512
  
  e312731ea8df3fc252ab870801fedffae39ac570cd0dba8f9221055df452d59af7e27cec0b1699db8bd2a79b3797fff8876e977ba444f359937a72764c887594
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVaD3TP7DFHSU:X6QFElP6n+gJQMOtEvwDpjBmzDIU
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2