78167e0839748e450a7ad861df543bab8e8964b5c1639cf0ca138279cb7ad6a7 | Triage

Sharing

General

Target

2024-09-21_351296bca3cd1dbb9cbf6d9a01f8e4cb_cryptolocker
Size

92KB
Sample

240921-cwkz1s1bmd
MD5

351296bca3cd1dbb9cbf6d9a01f8e4cb
SHA1

b1e09f163d79c539c67f40e03a620851073233d7
SHA256

78167e0839748e450a7ad861df543bab8e8964b5c1639cf0ca138279cb7ad6a7
SHA512

faed8024a2180715120520813cd739c9ba7873998f3e83f5eed64bcea0a136de6c0378b64827b461b4f6380d9c51367a0848b2b1f76b050f71108f8a81a97878
SSDEEP

1536:vj+jsMQMOtEvwDpj5H8u8rBN6nqEZNi1OkQoOz:vCjsIOtEvwDpj5H8zPsz

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-21_351296bca3cd1dbb9cbf6d9a01f8e4cb_cryptolocker
- Size
  
  92KB
- MD5
  
  351296bca3cd1dbb9cbf6d9a01f8e4cb
- SHA1
  
  b1e09f163d79c539c67f40e03a620851073233d7
- SHA256
  
  78167e0839748e450a7ad861df543bab8e8964b5c1639cf0ca138279cb7ad6a7
- SHA512
  
  faed8024a2180715120520813cd739c9ba7873998f3e83f5eed64bcea0a136de6c0378b64827b461b4f6380d9c51367a0848b2b1f76b050f71108f8a81a97878
- SSDEEP
  
  1536:vj+jsMQMOtEvwDpj5H8u8rBN6nqEZNi1OkQoOz:vCjsIOtEvwDpj5H8zPsz
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2