b1f66c7d062a0a11ccef4756ea1ddecff984a6b38331b8108d2b9c96bc737516 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-04_b4a2ce6cda3458021ba067f9d122f9a6_cryptolocker
Size

69KB
Sample

241004-e4n3ravarl
MD5

b4a2ce6cda3458021ba067f9d122f9a6
SHA1

3fddb1b8434533fa2fd09abc31072dcfdc8e92ab
SHA256

b1f66c7d062a0a11ccef4756ea1ddecff984a6b38331b8108d2b9c96bc737516
SHA512

0ee1c760e8c76689d88d9da423a6980f90c4ae9b32ad3dc49bd21ced87bdf47ace74dc48b99f95ad384e9afa17b354444f0a10f1497b18493c93368a5f94f713
SSDEEP

1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszudnYTjipvF299N2Ur:aq7tdgI2MyzNORQtOflIwoHNV2XBFV7P

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-04_b4a2ce6cda3458021ba067f9d122f9a6_cryptolocker
- Size
  
  69KB
- MD5
  
  b4a2ce6cda3458021ba067f9d122f9a6
- SHA1
  
  3fddb1b8434533fa2fd09abc31072dcfdc8e92ab
- SHA256
  
  b1f66c7d062a0a11ccef4756ea1ddecff984a6b38331b8108d2b9c96bc737516
- SHA512
  
  0ee1c760e8c76689d88d9da423a6980f90c4ae9b32ad3dc49bd21ced87bdf47ace74dc48b99f95ad384e9afa17b354444f0a10f1497b18493c93368a5f94f713
- SSDEEP
  
  1536:o1KhxqwtdgI2MyzNORQtOflIwoHNV2XBFV72BOlA7ZszudnYTjipvF299N2Ur:aq7tdgI2MyzNORQtOflIwoHNV2XBFV7P
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2