534a9e616c7d3690f6532e4a7b5a25927b4600e1b04e887479b722b1f0c49908 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-02_c29456f010059dbfa7c0b1e442b9b334_cryptolocker
Size

40KB
Sample

241002-f8rj4szblp
MD5

c29456f010059dbfa7c0b1e442b9b334
SHA1

3c5edc3f6f04a496e5ac58d602055be33a190d56
SHA256

534a9e616c7d3690f6532e4a7b5a25927b4600e1b04e887479b722b1f0c49908
SHA512

303aedc7691314cf855ebbe8bd5b26988405376bf2b3422081f4ff177b30f168484bedadd8542b8c359d5758bcad4134afb1de6d780ba84bbb60a292677b2dfe
SSDEEP

384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNiJXxXunRSy3L6:btB9g/WItCSsAGjX7e9N0hunRvW

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-02_c29456f010059dbfa7c0b1e442b9b334_cryptolocker
- Size
  
  40KB
- MD5
  
  c29456f010059dbfa7c0b1e442b9b334
- SHA1
  
  3c5edc3f6f04a496e5ac58d602055be33a190d56
- SHA256
  
  534a9e616c7d3690f6532e4a7b5a25927b4600e1b04e887479b722b1f0c49908
- SHA512
  
  303aedc7691314cf855ebbe8bd5b26988405376bf2b3422081f4ff177b30f168484bedadd8542b8c359d5758bcad4134afb1de6d780ba84bbb60a292677b2dfe
- SSDEEP
  
  384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4XDIwNiJXxXunRSy3L6:btB9g/WItCSsAGjX7e9N0hunRvW
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2