8c65a18f8fc63fc3c2544152cfc622b2c04223420afa82fbff67c027e3746612 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-01_9f167e1e1485f3c94e66c8c2a5c1095b_cryptolocker
Size

47KB
Sample

241001-hgpmjswblq
MD5

9f167e1e1485f3c94e66c8c2a5c1095b
SHA1

2c35c8b8fb6b744321daf924917fcb6b1de6d628
SHA256

8c65a18f8fc63fc3c2544152cfc622b2c04223420afa82fbff67c027e3746612
SHA512

90ccdcd35648923efaec6e3e819409955e8ef1e7c4d72595daa85c5f0e1a2ce1d88b32f18e38d2c1d34974a11385d9bf539cd60b42fad74c323497132c9703da
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/aMDhkJlai:6j+1NMOtEvwDpjrRraJgi

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-01_9f167e1e1485f3c94e66c8c2a5c1095b_cryptolocker
- Size
  
  47KB
- MD5
  
  9f167e1e1485f3c94e66c8c2a5c1095b
- SHA1
  
  2c35c8b8fb6b744321daf924917fcb6b1de6d628
- SHA256
  
  8c65a18f8fc63fc3c2544152cfc622b2c04223420afa82fbff67c027e3746612
- SHA512
  
  90ccdcd35648923efaec6e3e819409955e8ef1e7c4d72595daa85c5f0e1a2ce1d88b32f18e38d2c1d34974a11385d9bf539cd60b42fad74c323497132c9703da
- SSDEEP
  
  768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/aMDhkJlai:6j+1NMOtEvwDpjrRraJgi
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2