d63b20c921249ebeff6505779f6807532db0c2ef017a8a0ae84be1552dd20c44 | Triage

Sharing

General

Target

2024-09-28_b0886f8cf737af756f2e52927fa8b5d8_cryptolocker
Size

54KB
Sample

240928-y84hsaxhmg
MD5

b0886f8cf737af756f2e52927fa8b5d8
SHA1

445c27c88899a2f072774d4d99cd06af83989b61
SHA256

d63b20c921249ebeff6505779f6807532db0c2ef017a8a0ae84be1552dd20c44
SHA512

05dcf06d81951847cc0dd57634f28d140f0be87de98fd56da751f108abb295ccc2a79d91a55819ca1f1fcd90cb2cc956be185d93c724cbf937b59e27f1b8bb31
SSDEEP

1536:V6QFElP6n+gMQMOtEvwDpjyaLccCGXlDS:V6a+pOtEvwDpjvDQ

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-28_b0886f8cf737af756f2e52927fa8b5d8_cryptolocker
- Size
  
  54KB
- MD5
  
  b0886f8cf737af756f2e52927fa8b5d8
- SHA1
  
  445c27c88899a2f072774d4d99cd06af83989b61
- SHA256
  
  d63b20c921249ebeff6505779f6807532db0c2ef017a8a0ae84be1552dd20c44
- SHA512
  
  05dcf06d81951847cc0dd57634f28d140f0be87de98fd56da751f108abb295ccc2a79d91a55819ca1f1fcd90cb2cc956be185d93c724cbf937b59e27f1b8bb31
- SSDEEP
  
  1536:V6QFElP6n+gMQMOtEvwDpjyaLccCGXlDS:V6a+pOtEvwDpjvDQ
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2