29a713e72aa776856e721ba446208023c1f4f645b772633bdd0bd6d929a24653 | Triage

Sharing

General

Target

2024-10-06_b3668e81488c360b7d6c1663b8e19f44_cryptolocker
Size

96KB
Sample

241006-pmykzayard
MD5

b3668e81488c360b7d6c1663b8e19f44
SHA1

7060b62f73d2dacdcd6526ae2de2f17aa87955d6
SHA256

29a713e72aa776856e721ba446208023c1f4f645b772633bdd0bd6d929a24653
SHA512

a49469b678665ede25840ddfa6e2f0eda3d56d6b9cd8736c8b560b1cc553422657c80800b0740b0854d94504053db607f35c988f0849a18a0606a7a56d899839
SSDEEP

1536:V6QFElP6n+gMQMOtEvwDpjQGYQbN/PKwNuj2GQi8YU:V6a+pOtEvwDpjtz1

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-06_b3668e81488c360b7d6c1663b8e19f44_cryptolocker
- Size
  
  96KB
- MD5
  
  b3668e81488c360b7d6c1663b8e19f44
- SHA1
  
  7060b62f73d2dacdcd6526ae2de2f17aa87955d6
- SHA256
  
  29a713e72aa776856e721ba446208023c1f4f645b772633bdd0bd6d929a24653
- SHA512
  
  a49469b678665ede25840ddfa6e2f0eda3d56d6b9cd8736c8b560b1cc553422657c80800b0740b0854d94504053db607f35c988f0849a18a0606a7a56d899839
- SSDEEP
  
  1536:V6QFElP6n+gMQMOtEvwDpjQGYQbN/PKwNuj2GQi8YU:V6a+pOtEvwDpjtz1
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2