d17a92c2fbb1a69231cf3d26590b81f4a0d0af846b27ea1e3fc4e70de0e5c33b | Triage

Sharing

General

Target

2024-09-30_ed993f459705c27193b206ef54911854_cryptolocker
Size

46KB
Sample

240930-kr3m9s1arc
MD5

ed993f459705c27193b206ef54911854
SHA1

d4c69971aef6453cccf36b2dd5f00977c71f36ee
SHA256

d17a92c2fbb1a69231cf3d26590b81f4a0d0af846b27ea1e3fc4e70de0e5c33b
SHA512

501e3b3384183da5f31edb6021274202f25679823cf4b7207fb69ffe889c0a20025ae3d8e38df55136b1f7f9a6344465a8ea51b6a7ab8fec86956378fdd529c8
SSDEEP

768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVaD3TP7DFHuRcD9HyX:X6QFElP6n+gJQMOtEvwDpjBmzDkWDt4

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-09-30_ed993f459705c27193b206ef54911854_cryptolocker
- Size
  
  46KB
- MD5
  
  ed993f459705c27193b206ef54911854
- SHA1
  
  d4c69971aef6453cccf36b2dd5f00977c71f36ee
- SHA256
  
  d17a92c2fbb1a69231cf3d26590b81f4a0d0af846b27ea1e3fc4e70de0e5c33b
- SHA512
  
  501e3b3384183da5f31edb6021274202f25679823cf4b7207fb69ffe889c0a20025ae3d8e38df55136b1f7f9a6344465a8ea51b6a7ab8fec86956378fdd529c8
- SSDEEP
  
  768:X6LsoEEeegiZPvEhHSG+gp/QtOOtEvwDpjBVaD3TP7DFHuRcD9HyX:X6QFElP6n+gJQMOtEvwDpjBmzDkWDt4
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2