e59688671e365ed503b9e2d81ea9b846de93eae08c6cdd57c2407342e7f1a569 | Triage

Sharing

General

Target

2024-09-30_d04b8b66426a250354df136864344868_cryptolocker
Size

48KB
Sample

240930-d7atvs1ajf
MD5

d04b8b66426a250354df136864344868
SHA1

fab519a3a9842fe9dcd90bd3adb753e0df35b6b5
SHA256

e59688671e365ed503b9e2d81ea9b846de93eae08c6cdd57c2407342e7f1a569
SHA512

b08458c34e21af71abcb939728b874cd272df575ee84ff0a7c9eafc6c9b07502e69da3acda1f5132f5a9b50dfba62872b2c0a7639569711bacea73e048af470c
SSDEEP

384:Q/4wODQkzonAYsju5N/surDQtOOtEvwDpjqIGROqS/WccJVJwi2B5oCCM8CLW2Vg:B9inqyNR/QtOOtEvwDpjBKccJVODvy3B

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-30_d04b8b66426a250354df136864344868_cryptolocker
- Size
  
  48KB
- MD5
  
  d04b8b66426a250354df136864344868
- SHA1
  
  fab519a3a9842fe9dcd90bd3adb753e0df35b6b5
- SHA256
  
  e59688671e365ed503b9e2d81ea9b846de93eae08c6cdd57c2407342e7f1a569
- SHA512
  
  b08458c34e21af71abcb939728b874cd272df575ee84ff0a7c9eafc6c9b07502e69da3acda1f5132f5a9b50dfba62872b2c0a7639569711bacea73e048af470c
- SSDEEP
  
  384:Q/4wODQkzonAYsju5N/surDQtOOtEvwDpjqIGROqS/WccJVJwi2B5oCCM8CLW2Vg:B9inqyNR/QtOOtEvwDpjBKccJVODvy3B
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2