81c530c19cafdaee2266681ce472db196f200d969cdb729ecee08d34572bf83e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-25_94e7adfc90a7f0d270138c89ce123ab9_cryptolocker
Size

48KB
Sample

240925-rq63matdkc
MD5

94e7adfc90a7f0d270138c89ce123ab9
SHA1

71859224d5282a33c95bb2c4c51120a7fe134d46
SHA256

81c530c19cafdaee2266681ce472db196f200d969cdb729ecee08d34572bf83e
SHA512

71ab614c50b8b1d52f10835db9ea264b193d099643637d030199f83ef301c7861001438f3164de11be514dbd9eaa80581a49867794b16d2e8577c0cbdc5ca66a
SSDEEP

768:26LsoVEeegiZPvEhHSP+gDdQtOOtEvwDpjtMLZdzuqpXsiE8Wq/DpkIT1:26Q0ElP6G+gBQMOtEvwDpjgWMl7T1

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-25_94e7adfc90a7f0d270138c89ce123ab9_cryptolocker
- Size
  
  48KB
- MD5
  
  94e7adfc90a7f0d270138c89ce123ab9
- SHA1
  
  71859224d5282a33c95bb2c4c51120a7fe134d46
- SHA256
  
  81c530c19cafdaee2266681ce472db196f200d969cdb729ecee08d34572bf83e
- SHA512
  
  71ab614c50b8b1d52f10835db9ea264b193d099643637d030199f83ef301c7861001438f3164de11be514dbd9eaa80581a49867794b16d2e8577c0cbdc5ca66a
- SSDEEP
  
  768:26LsoVEeegiZPvEhHSP+gDdQtOOtEvwDpjtMLZdzuqpXsiE8Wq/DpkIT1:26Q0ElP6G+gBQMOtEvwDpjgWMl7T1
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2