cbb4661c41e14a9d06af3d7eda3a00958405be0800fb24a6aeb41b5aab543089 | Triage

Sharing

General

Target

2024-09-30_bc0d6fe00693b50cb530b239958247a0_cryptolocker
Size

45KB
Sample

240930-e2clyaxhqr
MD5

bc0d6fe00693b50cb530b239958247a0
SHA1

b74669ad63a749ab9f64e05cb7146834765151cf
SHA256

cbb4661c41e14a9d06af3d7eda3a00958405be0800fb24a6aeb41b5aab543089
SHA512

ec83f1d9b1c79f33e5352bc16f16984d242af93517e99109fd2422f9567d0d54324c8f01715ad1d33562ef9a3a88497d86b991b9fa2ff0e4bf63daf34e27a10f
SSDEEP

768:TS5nQJ24LR7tOOtEvwDpjGqPhqlcnvgpnY1n9w/9:m5nkFNMOtEvwDpjG8hgpY1969

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-30_bc0d6fe00693b50cb530b239958247a0_cryptolocker
- Size
  
  45KB
- MD5
  
  bc0d6fe00693b50cb530b239958247a0
- SHA1
  
  b74669ad63a749ab9f64e05cb7146834765151cf
- SHA256
  
  cbb4661c41e14a9d06af3d7eda3a00958405be0800fb24a6aeb41b5aab543089
- SHA512
  
  ec83f1d9b1c79f33e5352bc16f16984d242af93517e99109fd2422f9567d0d54324c8f01715ad1d33562ef9a3a88497d86b991b9fa2ff0e4bf63daf34e27a10f
- SSDEEP
  
  768:TS5nQJ24LR7tOOtEvwDpjGqPhqlcnvgpnY1n9w/9:m5nkFNMOtEvwDpjG8hgpY1969
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2