f088472cacc6da47da523a69027a05f5ddc243ab9fb4d972cd9af1d5edca6088 | Triage

Sharing

General

Target

2024-10-02_8ae94bdb6ea88bcd3de203a9e4df07c4_cryptolocker
Size

42KB
Sample

241002-bvwvfstgre
MD5

8ae94bdb6ea88bcd3de203a9e4df07c4
SHA1

14139885eabca03ec93d19c051f7185ad0b62213
SHA256

f088472cacc6da47da523a69027a05f5ddc243ab9fb4d972cd9af1d5edca6088
SHA512

6dd1f0bae60005c7efbdb00c42a2182383bcd6f685a5bf59ff6548abf8398ed026b597b4910067902831c6ba8000cdfb626268add2eca406665768382b5b5ef6
SSDEEP

768:bA74zYcgT/Ekd0ryfjPIunqpeNswmT3HwnCk:bA6YcA/X6G0W143Qr

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-02_8ae94bdb6ea88bcd3de203a9e4df07c4_cryptolocker
- Size
  
  42KB
- MD5
  
  8ae94bdb6ea88bcd3de203a9e4df07c4
- SHA1
  
  14139885eabca03ec93d19c051f7185ad0b62213
- SHA256
  
  f088472cacc6da47da523a69027a05f5ddc243ab9fb4d972cd9af1d5edca6088
- SHA512
  
  6dd1f0bae60005c7efbdb00c42a2182383bcd6f685a5bf59ff6548abf8398ed026b597b4910067902831c6ba8000cdfb626268add2eca406665768382b5b5ef6
- SSDEEP
  
  768:bA74zYcgT/Ekd0ryfjPIunqpeNswmT3HwnCk:bA6YcA/X6G0W143Qr
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2