21bf1cebadd408878b5f77c3c5deea514fc5ffc6250d7b72bb51311fc6ab845b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-30_cc86fe95c12c500c195cb50a5c0f52a5_cryptolocker
Size

47KB
Sample

240930-c2b93atcpp
MD5

cc86fe95c12c500c195cb50a5c0f52a5
SHA1

2d2ebf5c225b097702c366eb5bafd64ba3ded41f
SHA256

21bf1cebadd408878b5f77c3c5deea514fc5ffc6250d7b72bb51311fc6ab845b
SHA512

8f6af516cc3672f267b2a71039993a877ba5140f6cda461812d4a6f6214f013dd5b04bb738f168edcc407612d636520ec0902bc533b60c6ee5382bc6fce8fd65
SSDEEP

768:y6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpjbXOQ69zbjlAAX5e9zr3:y6QFElP6n+gMQMOtEvwDpjbizbR9Xwzb

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-30_cc86fe95c12c500c195cb50a5c0f52a5_cryptolocker
- Size
  
  47KB
- MD5
  
  cc86fe95c12c500c195cb50a5c0f52a5
- SHA1
  
  2d2ebf5c225b097702c366eb5bafd64ba3ded41f
- SHA256
  
  21bf1cebadd408878b5f77c3c5deea514fc5ffc6250d7b72bb51311fc6ab845b
- SHA512
  
  8f6af516cc3672f267b2a71039993a877ba5140f6cda461812d4a6f6214f013dd5b04bb738f168edcc407612d636520ec0902bc533b60c6ee5382bc6fce8fd65
- SSDEEP
  
  768:y6LsoEEeegiZPvEhHSG+gDYQtOOtEvwDpjbXOQ69zbjlAAX5e9zr3:y6QFElP6n+gMQMOtEvwDpjbizbR9Xwzb
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2