777e892d4b31f3ae860db6158b01dd614938732924d69f2a3c742710bc1540d6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-29_ead4ce95ffd8890b4dafbfe182243b99_cryptolocker
Size

35KB
Sample

240929-dh344szfqa
MD5

ead4ce95ffd8890b4dafbfe182243b99
SHA1

dcebc382fbcaa526189e22aebb4ad7005bf09446
SHA256

777e892d4b31f3ae860db6158b01dd614938732924d69f2a3c742710bc1540d6
SHA512

c4d9f6500975e0f12ddcfcb9acb4f245ad07fcee259e2f0588e1c4d3d4f3c496e1a9584c9dd119bb7ba9e8a364a49b556924a2430c9f6da0cff60f61ab74262a
SSDEEP

384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGXvJF3SL7:bG74zYcgT/Ekd0ryfjkbCL7

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-29_ead4ce95ffd8890b4dafbfe182243b99_cryptolocker
- Size
  
  35KB
- MD5
  
  ead4ce95ffd8890b4dafbfe182243b99
- SHA1
  
  dcebc382fbcaa526189e22aebb4ad7005bf09446
- SHA256
  
  777e892d4b31f3ae860db6158b01dd614938732924d69f2a3c742710bc1540d6
- SHA512
  
  c4d9f6500975e0f12ddcfcb9acb4f245ad07fcee259e2f0588e1c4d3d4f3c496e1a9584c9dd119bb7ba9e8a364a49b556924a2430c9f6da0cff60f61ab74262a
- SSDEEP
  
  384:bG74uGLLQRcsdeQ72ngEr4K7YmE8j60nrlwfjDUGTGXvJF3SL7:bG74zYcgT/Ekd0ryfjkbCL7
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2