64712e8de58bef6164d59bcbb44d3274ee123b45a3d561b0f6376d671edfcf40 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-21_87922f3e7062ba38e2efc25638c60c56_cryptolocker
Size

35KB
Sample

240921-f35jsawhrc
MD5

87922f3e7062ba38e2efc25638c60c56
SHA1

004def002f093a6e252e4e13cf2bbc06548f0fbd
SHA256

64712e8de58bef6164d59bcbb44d3274ee123b45a3d561b0f6376d671edfcf40
SHA512

baafac1b096d9332af007d4c5b2695990772e034037dc72c05b4f4b6ab2ed32329106ef564943e9c6b25cc0f443d69b469bcfdcc26c1d6c9fbaa4f67ee6dac57
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBjb1iIJSFlWvmP:X6QFElP6n+gJQMOtEvwDpjBngHnZ

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-21_87922f3e7062ba38e2efc25638c60c56_cryptolocker
- Size
  
  35KB
- MD5
  
  87922f3e7062ba38e2efc25638c60c56
- SHA1
  
  004def002f093a6e252e4e13cf2bbc06548f0fbd
- SHA256
  
  64712e8de58bef6164d59bcbb44d3274ee123b45a3d561b0f6376d671edfcf40
- SHA512
  
  baafac1b096d9332af007d4c5b2695990772e034037dc72c05b4f4b6ab2ed32329106ef564943e9c6b25cc0f443d69b469bcfdcc26c1d6c9fbaa4f67ee6dac57
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBjb1iIJSFlWvmP:X6QFElP6n+gJQMOtEvwDpjBngHnZ
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2