be1efae7f17e207a88e22149004b38007cc9208a02801a1519c3af7697ce07eb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-04_47809bae2cc003b897f3f831dbe78343_cryptolocker
Size

33KB
Sample

241004-f3481s1apf
MD5

47809bae2cc003b897f3f831dbe78343
SHA1

b84ee19d29a695bf64d963979a27c2ec5396fd12
SHA256

be1efae7f17e207a88e22149004b38007cc9208a02801a1519c3af7697ce07eb
SHA512

eaadeb64fd2372b1f063a6287cbd547556d6e4d159ec61449254dcb51d16c70b3f658cfac48b62614a05b89a196365f53f93a754923d84aee8e8dd4578f1dff4
SSDEEP

384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4l8tFFxE2B4lWS+7:btB9g/WItCSsAGjX7r3B4G7

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-04_47809bae2cc003b897f3f831dbe78343_cryptolocker
- Size
  
  33KB
- MD5
  
  47809bae2cc003b897f3f831dbe78343
- SHA1
  
  b84ee19d29a695bf64d963979a27c2ec5396fd12
- SHA256
  
  be1efae7f17e207a88e22149004b38007cc9208a02801a1519c3af7697ce07eb
- SHA512
  
  eaadeb64fd2372b1f063a6287cbd547556d6e4d159ec61449254dcb51d16c70b3f658cfac48b62614a05b89a196365f53f93a754923d84aee8e8dd4578f1dff4
- SSDEEP
  
  384:btBYQg/WIEhUCSNyepEjYnDOAlzVol6U/zzo+tkq4l8tFFxE2B4lWS+7:btB9g/WItCSsAGjX7r3B4G7
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2