2d529a1aed231e23a8e13f1f0c300d01a44d3369bd738543e32aecfd4452fba0 | Triage

Sharing

General

Target

2024-09-19_868129a0a0927aa60f7aa34724f2b41d_cryptolocker
Size

42KB
Sample

240919-g8ar2aveka
MD5

868129a0a0927aa60f7aa34724f2b41d
SHA1

421e092156b7a43218fc76533bf9267a1549935e
SHA256

2d529a1aed231e23a8e13f1f0c300d01a44d3369bd738543e32aecfd4452fba0
SHA512

3a71920396c28cda4012f13b3441cf9cc98969629ec2431dc9844780cd2cd982ce5d04e2f6d3a4a630afe8206b9a5c8447c9217323f7885801a193472fa9c812
SSDEEP

768:bA74zYcgT/Ekd0ryfjPIunqpeNswmT3HwnCY:bA6YcA/X6G0W143QH

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-19_868129a0a0927aa60f7aa34724f2b41d_cryptolocker
- Size
  
  42KB
- MD5
  
  868129a0a0927aa60f7aa34724f2b41d
- SHA1
  
  421e092156b7a43218fc76533bf9267a1549935e
- SHA256
  
  2d529a1aed231e23a8e13f1f0c300d01a44d3369bd738543e32aecfd4452fba0
- SHA512
  
  3a71920396c28cda4012f13b3441cf9cc98969629ec2431dc9844780cd2cd982ce5d04e2f6d3a4a630afe8206b9a5c8447c9217323f7885801a193472fa9c812
- SSDEEP
  
  768:bA74zYcgT/Ekd0ryfjPIunqpeNswmT3HwnCY:bA6YcA/X6G0W143QH
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2