6990caf5a27cca8012e35eec33f42513cc348519f0e1c48efea8a01ff4dc4b2b | Triage

Sharing

General

Target

2024-10-02_8816feafad18585403a6b3ec05e6afd5_cryptolocker
Size

45KB
Sample

241002-bvsssstgqh
MD5

8816feafad18585403a6b3ec05e6afd5
SHA1

8bf2028b9068ea83c7f86b025c4009ff6d70b7aa
SHA256

6990caf5a27cca8012e35eec33f42513cc348519f0e1c48efea8a01ff4dc4b2b
SHA512

82a44c2ffa99a36ca764858fa95e7945b9686eb42918c3ddcf1bf91fe55b1b4c15800fca4850b8e1b74de363a4ad7c7957dbac6f241c3fbc0a2d460598074c52
SSDEEP

384:bm74uGLLQRcsdeQ72ngEr4K7YmE8jb0nrlwfjDUk3b+NS:bm74zYcgT/EkM0ryfjd3WS

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-02_8816feafad18585403a6b3ec05e6afd5_cryptolocker
- Size
  
  45KB
- MD5
  
  8816feafad18585403a6b3ec05e6afd5
- SHA1
  
  8bf2028b9068ea83c7f86b025c4009ff6d70b7aa
- SHA256
  
  6990caf5a27cca8012e35eec33f42513cc348519f0e1c48efea8a01ff4dc4b2b
- SHA512
  
  82a44c2ffa99a36ca764858fa95e7945b9686eb42918c3ddcf1bf91fe55b1b4c15800fca4850b8e1b74de363a4ad7c7957dbac6f241c3fbc0a2d460598074c52
- SSDEEP
  
  384:bm74uGLLQRcsdeQ72ngEr4K7YmE8jb0nrlwfjDUk3b+NS:bm74zYcgT/EkM0ryfjd3WS
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2