4529835483009b16c2790e92b9583da494eabe8c1d6087d7057f07c9a4acef40 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-09-30_7043fceca47bec41c1ba637d35637131_cryptolocker
Size

35KB
Sample

240930-d1zveazfnc
MD5

7043fceca47bec41c1ba637d35637131
SHA1

17e2016372c82fdadda6edca57b62e05f8a4502e
SHA256

4529835483009b16c2790e92b9583da494eabe8c1d6087d7057f07c9a4acef40
SHA512

fb0aade980aa520b86fb35605929da4740c2cb27241338adfd089f0bf7e4e7043b5589acaf7fdba5683adcc9affd75246d00a4a896817b70083c5f59da53b780
SSDEEP

384:bmM0V/YPvnr801TRoUGPh4TKt6ATt1DqgPa3s/zzoCt9/B1RU3qE4kb6oTer:b7o/2n1TCraU6GD1a4Xt9bRU6zA6oTg

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-30_7043fceca47bec41c1ba637d35637131_cryptolocker
- Size
  
  35KB
- MD5
  
  7043fceca47bec41c1ba637d35637131
- SHA1
  
  17e2016372c82fdadda6edca57b62e05f8a4502e
- SHA256
  
  4529835483009b16c2790e92b9583da494eabe8c1d6087d7057f07c9a4acef40
- SHA512
  
  fb0aade980aa520b86fb35605929da4740c2cb27241338adfd089f0bf7e4e7043b5589acaf7fdba5683adcc9affd75246d00a4a896817b70083c5f59da53b780
- SSDEEP
  
  384:bmM0V/YPvnr801TRoUGPh4TKt6ATt1DqgPa3s/zzoCt9/B1RU3qE4kb6oTer:b7o/2n1TCraU6GD1a4Xt9bRU6zA6oTg
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2