1923ce3a1a13ae056ce865ce45c35cfb95583fcd2dc71d0eaaac261c54c598e0 | Triage

Sharing

General

Target

2024-09-21_786b59ab65b90a1126e73a8f25e2d9b0_cryptolocker
Size

32KB
Sample

240921-g7rn6ayflc
MD5

786b59ab65b90a1126e73a8f25e2d9b0
SHA1

9d11ae9937161266295ab53757b5d7d3608bc954
SHA256

1923ce3a1a13ae056ce865ce45c35cfb95583fcd2dc71d0eaaac261c54c598e0
SHA512

bba0b0c38c0842008bbf5eeb47bcd6f91b475f89aa6d615dddd18ca8b94babc3021ce56d0c51ad12c3f6fe953a34622cb1ef02e024eab7e83ce30f67ffbab77f
SSDEEP

384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4l8tFFxE2B4lWS3a:btB9g/WItCSsAGjX7r3B4fa

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-21_786b59ab65b90a1126e73a8f25e2d9b0_cryptolocker
- Size
  
  32KB
- MD5
  
  786b59ab65b90a1126e73a8f25e2d9b0
- SHA1
  
  9d11ae9937161266295ab53757b5d7d3608bc954
- SHA256
  
  1923ce3a1a13ae056ce865ce45c35cfb95583fcd2dc71d0eaaac261c54c598e0
- SHA512
  
  bba0b0c38c0842008bbf5eeb47bcd6f91b475f89aa6d615dddd18ca8b94babc3021ce56d0c51ad12c3f6fe953a34622cb1ef02e024eab7e83ce30f67ffbab77f
- SSDEEP
  
  384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4l8tFFxE2B4lWS3a:btB9g/WItCSsAGjX7r3B4fa
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2