75e8a0c0a68995f4486958889786cff2608963d55ddfc27d0b6cfb48c74b5240 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-19_e376d92fe37f680fa97dc90c9b88618a_cryptolocker
Size

30KB
Sample

240919-vxlxta1crm
MD5

e376d92fe37f680fa97dc90c9b88618a
SHA1

77fccfe3365a560d4838c5f2541bad208bb84681
SHA256

75e8a0c0a68995f4486958889786cff2608963d55ddfc27d0b6cfb48c74b5240
SHA512

fefc7e5e1ea4076aeb8870f53a5f1bdc58d05e1c7d8240b8257726f9e639e3889818b95ef749a30e423283e38856c226140fe7d4bb859e42bae1fae7b29bff6e
SSDEEP

384:bA74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUgIunexR7:bA74zYcgT/Ekd0ryfjPIunY7

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-19_e376d92fe37f680fa97dc90c9b88618a_cryptolocker
- Size
  
  30KB
- MD5
  
  e376d92fe37f680fa97dc90c9b88618a
- SHA1
  
  77fccfe3365a560d4838c5f2541bad208bb84681
- SHA256
  
  75e8a0c0a68995f4486958889786cff2608963d55ddfc27d0b6cfb48c74b5240
- SHA512
  
  fefc7e5e1ea4076aeb8870f53a5f1bdc58d05e1c7d8240b8257726f9e639e3889818b95ef749a30e423283e38856c226140fe7d4bb859e42bae1fae7b29bff6e
- SSDEEP
  
  384:bA74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUgIunexR7:bA74zYcgT/Ekd0ryfjPIunY7
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2