e07cdb38265453a55d075b7ae863f1c8cb083d5ad645c17731781b1b46420062 | Triage

Sharing

General

Target

2024-09-19_7b3c9bfddd1f610667f54eb79e33feb0_cryptolocker
Size

93KB
Sample

240919-g77elsvglq
MD5

7b3c9bfddd1f610667f54eb79e33feb0
SHA1

f392644acd43e1678333c22d20f5608a4b2f17ba
SHA256

e07cdb38265453a55d075b7ae863f1c8cb083d5ad645c17731781b1b46420062
SHA512

a88ce7b6fb3635168e4810103ff9269f61c70dd4c316f0d438cac9c0f013a70faab5352d2ad2657385f293647bb731a75d97db34adc007df5754c30b5715895b
SSDEEP

1536:vj+jsMQMOtEvwDpj5H8u8rBN6nqEZNi1OkQNpZYzm:vCjsIOtEvwDpj5H8zPswm

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-19_7b3c9bfddd1f610667f54eb79e33feb0_cryptolocker
- Size
  
  93KB
- MD5
  
  7b3c9bfddd1f610667f54eb79e33feb0
- SHA1
  
  f392644acd43e1678333c22d20f5608a4b2f17ba
- SHA256
  
  e07cdb38265453a55d075b7ae863f1c8cb083d5ad645c17731781b1b46420062
- SHA512
  
  a88ce7b6fb3635168e4810103ff9269f61c70dd4c316f0d438cac9c0f013a70faab5352d2ad2657385f293647bb731a75d97db34adc007df5754c30b5715895b
- SSDEEP
  
  1536:vj+jsMQMOtEvwDpj5H8u8rBN6nqEZNi1OkQNpZYzm:vCjsIOtEvwDpj5H8zPswm
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2