a515a0f4103f15cb897fb2037f957391b132e71e211c074f3778e5bedeb7fcec | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-29_b0217f9a8d4796cf4c78bc81a01b1670_cryptolocker
Size

57KB
Sample

240929-h8vb4svbkl
MD5

b0217f9a8d4796cf4c78bc81a01b1670
SHA1

3ba8d0127ae20b1d84d64e0201558a75552631df
SHA256

a515a0f4103f15cb897fb2037f957391b132e71e211c074f3778e5bedeb7fcec
SHA512

f7e31dc3ea9702946a1876a0791906d11486f52da3446b3ded11397cf46a8886f5e650a13538a39af6bc01b2ec7b1a2bbf8f49e3de3e90cc535996a57fa44132
SSDEEP

1536:V6QFElP6n+gMQMOtEvwDpjyaLccCKdulcrJuE:V6a+pOtEvwDpjv99

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-29_b0217f9a8d4796cf4c78bc81a01b1670_cryptolocker
- Size
  
  57KB
- MD5
  
  b0217f9a8d4796cf4c78bc81a01b1670
- SHA1
  
  3ba8d0127ae20b1d84d64e0201558a75552631df
- SHA256
  
  a515a0f4103f15cb897fb2037f957391b132e71e211c074f3778e5bedeb7fcec
- SHA512
  
  f7e31dc3ea9702946a1876a0791906d11486f52da3446b3ded11397cf46a8886f5e650a13538a39af6bc01b2ec7b1a2bbf8f49e3de3e90cc535996a57fa44132
- SSDEEP
  
  1536:V6QFElP6n+gMQMOtEvwDpjyaLccCKdulcrJuE:V6a+pOtEvwDpjv99
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2