a762c02046170ec1007f85e47c5b4bde18bd23875303282041b0f0c0ff1772ba | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-02_913a6101fef30bb0c9b79bad5ce34d26_cryptolocker
Size

59KB
Sample

241002-mnehda1flq
MD5

913a6101fef30bb0c9b79bad5ce34d26
SHA1

43d92446816550ff15a3748084b1cb9a35b061ce
SHA256

a762c02046170ec1007f85e47c5b4bde18bd23875303282041b0f0c0ff1772ba
SHA512

919e8160449e05404f8f16ff70f2558237c48248d638cbb43ff7012cbdf62d0a4fdc58cac08b481253dcc5ffcc19156391f7572b5d65a6f55d5e4b41ce0dac24
SSDEEP

1536:V6QFElP6n+gMQMOtEvwDpjyaLccCKdulcrJu1:V6a+pOtEvwDpjv9M

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-02_913a6101fef30bb0c9b79bad5ce34d26_cryptolocker
- Size
  
  59KB
- MD5
  
  913a6101fef30bb0c9b79bad5ce34d26
- SHA1
  
  43d92446816550ff15a3748084b1cb9a35b061ce
- SHA256
  
  a762c02046170ec1007f85e47c5b4bde18bd23875303282041b0f0c0ff1772ba
- SHA512
  
  919e8160449e05404f8f16ff70f2558237c48248d638cbb43ff7012cbdf62d0a4fdc58cac08b481253dcc5ffcc19156391f7572b5d65a6f55d5e4b41ce0dac24
- SSDEEP
  
  1536:V6QFElP6n+gMQMOtEvwDpjyaLccCKdulcrJu1:V6a+pOtEvwDpjv9M
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2