8a9bd6e8f8dd9cabef0cd991117fcb23500688c8abaad229bdeb304539862d52 | Triage

Sharing

General

Target

2024-10-02_025d7e01d91f46f831a75f951ba40972_cryptolocker
Size

46KB
Sample

241002-brsnmatfle
MD5

025d7e01d91f46f831a75f951ba40972
SHA1

e473019c27f73e5300b3c193eee022fbeded63b7
SHA256

8a9bd6e8f8dd9cabef0cd991117fcb23500688c8abaad229bdeb304539862d52
SHA512

1e79f8f78d56dd75a8132cd72e3e46b10b0644ebbde18c1fb72cadb55892da443d37e601c65fddfc93f367e3af3b64b014e184e1dff796f090c5cc5a8a71ff44
SSDEEP

768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAIie0LHumRy:bCDOw9aMDooc+vAlXnRy

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-02_025d7e01d91f46f831a75f951ba40972_cryptolocker
- Size
  
  46KB
- MD5
  
  025d7e01d91f46f831a75f951ba40972
- SHA1
  
  e473019c27f73e5300b3c193eee022fbeded63b7
- SHA256
  
  8a9bd6e8f8dd9cabef0cd991117fcb23500688c8abaad229bdeb304539862d52
- SHA512
  
  1e79f8f78d56dd75a8132cd72e3e46b10b0644ebbde18c1fb72cadb55892da443d37e601c65fddfc93f367e3af3b64b014e184e1dff796f090c5cc5a8a71ff44
- SSDEEP
  
  768:bCDOw9UiaKHfjnD0S16avdrQFiLjJvtAIie0LHumRy:bCDOw9aMDooc+vAlXnRy
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2