8798c308be5591a8861b8eb151c7d9db0b274e06e5bbe6412f64e101251a18db | Triage

Sharing

General

Target

2024-10-02_325a62baea5d14d36738fbba9fc16db4_cryptolocker
Size

42KB
Sample

241002-bsz44azfmr
MD5

325a62baea5d14d36738fbba9fc16db4
SHA1

bb308ee4459324d5892ac6e849c3a76b0d4b1781
SHA256

8798c308be5591a8861b8eb151c7d9db0b274e06e5bbe6412f64e101251a18db
SHA512

caa2325b289bd775bc6d9da41bc4441fcb9e043edb179d4606047283be2deb5911779cca667681ec684ac966a7c3a000f1dc951f44a5c6b6d036fe2f4610cd98
SSDEEP

768:bA74zYcgT/Ekd0ryfjPIunqpeNswmT3HwnC/:bA6YcA/X6G0W143Q4

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-02_325a62baea5d14d36738fbba9fc16db4_cryptolocker
- Size
  
  42KB
- MD5
  
  325a62baea5d14d36738fbba9fc16db4
- SHA1
  
  bb308ee4459324d5892ac6e849c3a76b0d4b1781
- SHA256
  
  8798c308be5591a8861b8eb151c7d9db0b274e06e5bbe6412f64e101251a18db
- SHA512
  
  caa2325b289bd775bc6d9da41bc4441fcb9e043edb179d4606047283be2deb5911779cca667681ec684ac966a7c3a000f1dc951f44a5c6b6d036fe2f4610cd98
- SSDEEP
  
  768:bA74zYcgT/Ekd0ryfjPIunqpeNswmT3HwnC/:bA6YcA/X6G0W143Q4
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2