f0147912674598fe379428553d0e6c6da60498c5a6f19859715dae27cefc82dc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2024-10-06_65e4d460a57415e72847e79fd15ece75_cryptolocker
Size

48KB
Sample

241006-a8fvqaxglp
MD5

65e4d460a57415e72847e79fd15ece75
SHA1

c8b0efdabd21ab126a0f4d79e12d4225550b79d5
SHA256

f0147912674598fe379428553d0e6c6da60498c5a6f19859715dae27cefc82dc
SHA512

ac72373c6eebca23b7784cde70eca94b630b02a14e4df93597990ec0aeeda8edc23705128a3b59397c398a2fdefc9c2e35ed75d12c7634dcbb152891b3da69b5
SSDEEP

768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/aMDhkJ5:6j+1NMOtEvwDpjrRraJ5

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-06_65e4d460a57415e72847e79fd15ece75_cryptolocker
- Size
  
  48KB
- MD5
  
  65e4d460a57415e72847e79fd15ece75
- SHA1
  
  c8b0efdabd21ab126a0f4d79e12d4225550b79d5
- SHA256
  
  f0147912674598fe379428553d0e6c6da60498c5a6f19859715dae27cefc82dc
- SHA512
  
  ac72373c6eebca23b7784cde70eca94b630b02a14e4df93597990ec0aeeda8edc23705128a3b59397c398a2fdefc9c2e35ed75d12c7634dcbb152891b3da69b5
- SSDEEP
  
  768:6Qz7yVEhs9+4OR7tOOtEvwDpjLHqh6/aMDhkJ5:6j+1NMOtEvwDpjrRraJ5
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2