62ec9ff8524f3288e9b5a07ef6f4525d58809048a58ad32512f5a0bda2c1ff7e | Triage

Sharing

General

Target

2024-09-29_aa6b5b638f3d5a9796618fdeed984a36_cryptolocker
Size

48KB
Sample

240929-d3tq6sybql
MD5

aa6b5b638f3d5a9796618fdeed984a36
SHA1

b5dd2e437f297a7eb788085f892ee136af2e4d69
SHA256

62ec9ff8524f3288e9b5a07ef6f4525d58809048a58ad32512f5a0bda2c1ff7e
SHA512

23d8df36a269b1073d0a812c7af713a953e5736d6e2b6741dc67b12d4367487f54ed0d22040d1e802e0eb7b15854f1133458c63033f72b6b8ac379dd3e0b0293
SSDEEP

768:V6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpj/MLaHaMMm2X3dX+D:V6QFElP6n+gMQMOtEvwDpjyaHaXr+D

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-29_aa6b5b638f3d5a9796618fdeed984a36_cryptolocker
- Size
  
  48KB
- MD5
  
  aa6b5b638f3d5a9796618fdeed984a36
- SHA1
  
  b5dd2e437f297a7eb788085f892ee136af2e4d69
- SHA256
  
  62ec9ff8524f3288e9b5a07ef6f4525d58809048a58ad32512f5a0bda2c1ff7e
- SHA512
  
  23d8df36a269b1073d0a812c7af713a953e5736d6e2b6741dc67b12d4367487f54ed0d22040d1e802e0eb7b15854f1133458c63033f72b6b8ac379dd3e0b0293
- SSDEEP
  
  768:V6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpj/MLaHaMMm2X3dX+D:V6QFElP6n+gMQMOtEvwDpjyaHaXr+D
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2