2e2e347e0c09bbc5877c234528b9936e4a76f45f7c774a2ca0c383f34aabe995 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-20_c2da2bcfcbf24e834f9989bf47cfdde5_cryptolocker
Size

60KB
Sample

240920-3n412avcjb
MD5

c2da2bcfcbf24e834f9989bf47cfdde5
SHA1

f48538e093b99550741bca4f82142639cd20794f
SHA256

2e2e347e0c09bbc5877c234528b9936e4a76f45f7c774a2ca0c383f34aabe995
SHA512

0c43fe674c6e4538dd802b2b510c549435f3c7ea75c5425b399e26b7b95978276e92e52c2a1f02e5888ce431ce56fe9d5e6340f341c8536503333bd57e5fb193
SSDEEP

1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszudnYTjipvF29V:aq7tdgI2MyzNORQtOflIwoHNV2XBFV7X

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-20_c2da2bcfcbf24e834f9989bf47cfdde5_cryptolocker
- Size
  
  60KB
- MD5
  
  c2da2bcfcbf24e834f9989bf47cfdde5
- SHA1
  
  f48538e093b99550741bca4f82142639cd20794f
- SHA256
  
  2e2e347e0c09bbc5877c234528b9936e4a76f45f7c774a2ca0c383f34aabe995
- SHA512
  
  0c43fe674c6e4538dd802b2b510c549435f3c7ea75c5425b399e26b7b95978276e92e52c2a1f02e5888ce431ce56fe9d5e6340f341c8536503333bd57e5fb193
- SSDEEP
  
  1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszudnYTjipvF29V:aq7tdgI2MyzNORQtOflIwoHNV2XBFV7X
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2