62cfea77026c7f74eef64c4254e7bbfe0f43083f6b638cbb60f6e23cbd3fecb7 | Triage

Sharing

General

Target

2024-10-02_0aed4265eb64c6205258c4a625c61688_cryptolocker
Size

45KB
Sample

241002-brw12szern
MD5

0aed4265eb64c6205258c4a625c61688
SHA1

aaeaff94b29f5f59db1ffd3ec489757067c02d24
SHA256

62cfea77026c7f74eef64c4254e7bbfe0f43083f6b638cbb60f6e23cbd3fecb7
SHA512

12f718f2d6ac24169a526c9ba785f69dd7c6c6a54580ece6bc32d55b1159546e65d43899d5b4855210786783f10f9f6b0175c1988d0305c19e9bce7998f80f3f
SSDEEP

384:bm74uGLLQRcsdeQ72ngEr4K7YmE8jb0nrlwfjDUk3b+NV:bm74zYcgT/EkM0ryfjd3WV

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-02_0aed4265eb64c6205258c4a625c61688_cryptolocker
- Size
  
  45KB
- MD5
  
  0aed4265eb64c6205258c4a625c61688
- SHA1
  
  aaeaff94b29f5f59db1ffd3ec489757067c02d24
- SHA256
  
  62cfea77026c7f74eef64c4254e7bbfe0f43083f6b638cbb60f6e23cbd3fecb7
- SHA512
  
  12f718f2d6ac24169a526c9ba785f69dd7c6c6a54580ece6bc32d55b1159546e65d43899d5b4855210786783f10f9f6b0175c1988d0305c19e9bce7998f80f3f
- SSDEEP
  
  384:bm74uGLLQRcsdeQ72ngEr4K7YmE8jb0nrlwfjDUk3b+NV:bm74zYcgT/EkM0ryfjd3WV
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2