665c09c82db6ba2c61e91fb3dac2d4d17ecd09141b9b80daa758a766a185c253 | Triage

Sharing

General

Target

2024-09-19_44dd224d3410bfb039e202a9e3de41a3_cryptolocker
Size

86KB
Sample

240919-g59f7avfmq
MD5

44dd224d3410bfb039e202a9e3de41a3
SHA1

f359556c0baf9acf8cb8247239767504b95b9522
SHA256

665c09c82db6ba2c61e91fb3dac2d4d17ecd09141b9b80daa758a766a185c253
SHA512

e3564e737b918d762ec84a59e16080f84a24b364280eead60566801a0462b30c1d3bf5fe519540f457921b90bc5e57496ebe8a44669c6fa541f4f46b62a53500
SSDEEP

1536:V6QFElP6n+gMQMOtEvwDpjQGYQbNcqamvWL:V6a+pOtEvwDpjta

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-19_44dd224d3410bfb039e202a9e3de41a3_cryptolocker
- Size
  
  86KB
- MD5
  
  44dd224d3410bfb039e202a9e3de41a3
- SHA1
  
  f359556c0baf9acf8cb8247239767504b95b9522
- SHA256
  
  665c09c82db6ba2c61e91fb3dac2d4d17ecd09141b9b80daa758a766a185c253
- SHA512
  
  e3564e737b918d762ec84a59e16080f84a24b364280eead60566801a0462b30c1d3bf5fe519540f457921b90bc5e57496ebe8a44669c6fa541f4f46b62a53500
- SSDEEP
  
  1536:V6QFElP6n+gMQMOtEvwDpjQGYQbNcqamvWL:V6a+pOtEvwDpjta
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2