0cc0c1a8d01748444e3f533e8e4d449d9b0ad49cd90a4fc5f6d19ef36d7f6f7f | Triage

Sharing

General

Target

2024-09-28_9183372f196d4d8e744a8b378f6fd404_cryptolocker
Size

61KB
Sample

240928-fcdclszfkg
MD5

9183372f196d4d8e744a8b378f6fd404
SHA1

6a6d905c504abafe4e2bf1f7ce2cacff36745f46
SHA256

0cc0c1a8d01748444e3f533e8e4d449d9b0ad49cd90a4fc5f6d19ef36d7f6f7f
SHA512

a48ed682710db5cf84aee7bbed74db512a47a5db59250c759d0877cfb4b0ad56785e15e777af5c553d383b1fed25f4d8bd2e75e0dacb5f25232b483e1786594b
SSDEEP

1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszudnYTjipvF293vu:aq7tdgI2MyzNORQtOflIwoHNV2XBFV74

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-28_9183372f196d4d8e744a8b378f6fd404_cryptolocker
- Size
  
  61KB
- MD5
  
  9183372f196d4d8e744a8b378f6fd404
- SHA1
  
  6a6d905c504abafe4e2bf1f7ce2cacff36745f46
- SHA256
  
  0cc0c1a8d01748444e3f533e8e4d449d9b0ad49cd90a4fc5f6d19ef36d7f6f7f
- SHA512
  
  a48ed682710db5cf84aee7bbed74db512a47a5db59250c759d0877cfb4b0ad56785e15e777af5c553d383b1fed25f4d8bd2e75e0dacb5f25232b483e1786594b
- SSDEEP
  
  1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszudnYTjipvF293vu:aq7tdgI2MyzNORQtOflIwoHNV2XBFV74
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2