a318f530a4862c0b1e45dd01e8a5b5c682e80fa847533a2696157517c7cc734a | Triage

Sharing

General

Target

2024-09-19_9f4085aa4bc03e02443d3c15f2ecb37e_cryptolocker
Size

43KB
Sample

240919-g8k8rsvgnl
MD5

9f4085aa4bc03e02443d3c15f2ecb37e
SHA1

369b676393c976e137006177ea3756beb8fde63d
SHA256

a318f530a4862c0b1e45dd01e8a5b5c682e80fa847533a2696157517c7cc734a
SHA512

e8f9761c315d0ed3b1e08ef31f66c0c4e8e73ebf1dd8716cb19ebacd4b0f7822b4855bfea07ed7b10efe27e013ad4ec14fb71db1fa4449f7b57066df045c1216
SSDEEP

768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAqjrO:bCDOw9aMDooc+vAqjK

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-19_9f4085aa4bc03e02443d3c15f2ecb37e_cryptolocker
- Size
  
  43KB
- MD5
  
  9f4085aa4bc03e02443d3c15f2ecb37e
- SHA1
  
  369b676393c976e137006177ea3756beb8fde63d
- SHA256
  
  a318f530a4862c0b1e45dd01e8a5b5c682e80fa847533a2696157517c7cc734a
- SHA512
  
  e8f9761c315d0ed3b1e08ef31f66c0c4e8e73ebf1dd8716cb19ebacd4b0f7822b4855bfea07ed7b10efe27e013ad4ec14fb71db1fa4449f7b57066df045c1216
- SSDEEP
  
  768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAqjrO:bCDOw9aMDooc+vAqjK
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2