39f8ca26d71a59d70a5a8e225949b4ca20dded45d34006c9b44cb5896acc900f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-02_16e4fbacd2eaf4511b95fe7a1b518215_cryptolocker
Size

73KB
Sample

241002-eze92s1alh
MD5

16e4fbacd2eaf4511b95fe7a1b518215
SHA1

7d978ddc7f274d91b7ed9d48cc5b7bf8573a86f7
SHA256

39f8ca26d71a59d70a5a8e225949b4ca20dded45d34006c9b44cb5896acc900f
SHA512

bb131dd487b5ab7444ebf2592e440bb4ad9574cbf686ae5631bb65dafa45a2bb521915bf68aadf873e8a08bdc1f3e0426df6746c6f6720c5549b85aa5f507c89
SSDEEP

768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4ZPsED3VK2+ZtyOjgO4r9vFAg2rq2g1B/Ry:vj+jsMQMOtEvwDpj5HZYTjipvF24pol

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-02_16e4fbacd2eaf4511b95fe7a1b518215_cryptolocker
- Size
  
  73KB
- MD5
  
  16e4fbacd2eaf4511b95fe7a1b518215
- SHA1
  
  7d978ddc7f274d91b7ed9d48cc5b7bf8573a86f7
- SHA256
  
  39f8ca26d71a59d70a5a8e225949b4ca20dded45d34006c9b44cb5896acc900f
- SHA512
  
  bb131dd487b5ab7444ebf2592e440bb4ad9574cbf686ae5631bb65dafa45a2bb521915bf68aadf873e8a08bdc1f3e0426df6746c6f6720c5549b85aa5f507c89
- SSDEEP
  
  768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4ZPsED3VK2+ZtyOjgO4r9vFAg2rq2g1B/Ry:vj+jsMQMOtEvwDpj5HZYTjipvF24pol
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2