bf6dad9eddaf8df35de21465bfb0faea3f6fa8c7295398e8f70b6defb642342c | Triage

Sharing

General

Target

2024-09-25_4362ad0efa626bf6cd17e6e6b88e9151_cryptolocker
Size

119KB
Sample

240925-fa3vgsyeme
MD5

4362ad0efa626bf6cd17e6e6b88e9151
SHA1

5b1d637294aeac70290e7ec663ec55f6cdfccc59
SHA256

bf6dad9eddaf8df35de21465bfb0faea3f6fa8c7295398e8f70b6defb642342c
SHA512

bcfff2364a1c174e9f04a7e8001dc4b110686bc1605ab0082b5afffe8d5cbbc58d38c665c0678de9fe7f0ee8cd6bc0d436614f6299288fc3c47aae167ca26533
SSDEEP

768:gUQz7yVEhs9+4T/1bytOOtEvwDpjNbZ7uyA36S7MpxRIIXVe3mU9TYwlOBTX:gUj+AIMOtEvwDpjNbwQEIPlemUhYH

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-25_4362ad0efa626bf6cd17e6e6b88e9151_cryptolocker
- Size
  
  119KB
- MD5
  
  4362ad0efa626bf6cd17e6e6b88e9151
- SHA1
  
  5b1d637294aeac70290e7ec663ec55f6cdfccc59
- SHA256
  
  bf6dad9eddaf8df35de21465bfb0faea3f6fa8c7295398e8f70b6defb642342c
- SHA512
  
  bcfff2364a1c174e9f04a7e8001dc4b110686bc1605ab0082b5afffe8d5cbbc58d38c665c0678de9fe7f0ee8cd6bc0d436614f6299288fc3c47aae167ca26533
- SSDEEP
  
  768:gUQz7yVEhs9+4T/1bytOOtEvwDpjNbZ7uyA36S7MpxRIIXVe3mU9TYwlOBTX:gUj+AIMOtEvwDpjNbwQEIPlemUhYH
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2