c2143c83c128ddc80571a500ded413506d33b35ec9eca46b6c108c58aa46c69b | Triage

Sharing

General

Target

2024-09-30_971c341966b853d7e6c8f471b4988710_cryptolocker
Size

64KB
Sample

240930-d4lryszgpb
MD5

971c341966b853d7e6c8f471b4988710
SHA1

14955e37f913babb1b0de750ba48282f16c1e318
SHA256

c2143c83c128ddc80571a500ded413506d33b35ec9eca46b6c108c58aa46c69b
SHA512

739b607e8ac5d41648564dd53596f9877556000068e243c72c2573672e9df386d30fedd00599696f11d8af1ff58ea3b6ae0263a896d51e1bf3a924e34a957c6c
SSDEEP

1536:X6QFElP6n+gJQMOtEvwDpjBccD2RuoNmuBLZ/xblzopO:X6a+SOtEvwDpjBrOV

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-30_971c341966b853d7e6c8f471b4988710_cryptolocker
- Size
  
  64KB
- MD5
  
  971c341966b853d7e6c8f471b4988710
- SHA1
  
  14955e37f913babb1b0de750ba48282f16c1e318
- SHA256
  
  c2143c83c128ddc80571a500ded413506d33b35ec9eca46b6c108c58aa46c69b
- SHA512
  
  739b607e8ac5d41648564dd53596f9877556000068e243c72c2573672e9df386d30fedd00599696f11d8af1ff58ea3b6ae0263a896d51e1bf3a924e34a957c6c
- SSDEEP
  
  1536:X6QFElP6n+gJQMOtEvwDpjBccD2RuoNmuBLZ/xblzopO:X6a+SOtEvwDpjBrOV
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2