ae728cfb9e40507f4c37d3fcc897005f2d7e31d24a4c8de0190550ed8d8723d8 | Triage

Sharing

General

Target

2024-09-28_1e71fbd3ed9ae4127d0999c0bdd6a49a_cryptolocker
Size

60KB
Sample

240928-jarn1awdjd
MD5

1e71fbd3ed9ae4127d0999c0bdd6a49a
SHA1

7a5904b1becd2346aa9adcf3cf7c354877d14404
SHA256

ae728cfb9e40507f4c37d3fcc897005f2d7e31d24a4c8de0190550ed8d8723d8
SHA512

18b053def4e3f4e8ababcfeedb750ee81a88bb0db3574a716dbb66ea6e09fb6603a7ed7c0fc1d3be80a4e9555b9558fabaea702724e4844de753410b8441fe66
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I52kGEWY31:6j+1NMOtEvwDpjr8ox8UDEd1

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-28_1e71fbd3ed9ae4127d0999c0bdd6a49a_cryptolocker
- Size
  
  60KB
- MD5
  
  1e71fbd3ed9ae4127d0999c0bdd6a49a
- SHA1
  
  7a5904b1becd2346aa9adcf3cf7c354877d14404
- SHA256
  
  ae728cfb9e40507f4c37d3fcc897005f2d7e31d24a4c8de0190550ed8d8723d8
- SHA512
  
  18b053def4e3f4e8ababcfeedb750ee81a88bb0db3574a716dbb66ea6e09fb6603a7ed7c0fc1d3be80a4e9555b9558fabaea702724e4844de753410b8441fe66
- SSDEEP
  
  768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqPOYRmNxt5I52kGEWY31:6j+1NMOtEvwDpjr8ox8UDEd1
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2