fb85bea8f92e910d53edabb8310b9f0bff1fa6b0a5d89129068e3b514adb5ea7 | Triage

Sharing

General

Target

2024-10-08_259b2bdd5009e3316cc571ad5c1cd777_cryptolocker
Size

30KB
Sample

241008-3rb5eszbmn
MD5

259b2bdd5009e3316cc571ad5c1cd777
SHA1

c55bbd9f56904b05395598ae240f9bdae0bcbcaa
SHA256

fb85bea8f92e910d53edabb8310b9f0bff1fa6b0a5d89129068e3b514adb5ea7
SHA512

92fb4240e463f04fde7ac31404d585b392c2a6b3fb620f913f8599a531673ecafc78614732411ff35ad754095fd99c4bf7fb69a4cb052668fd0aa0b5dfb5264d
SSDEEP

384:qxOZzyjOnqGAs+8ULueO4NdE8tOOtEvwDpjqIGRYK1sGGYt9non:q0ZziOWwULueOSdE8tOOtEvwDpje6n

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-08_259b2bdd5009e3316cc571ad5c1cd777_cryptolocker
- Size
  
  30KB
- MD5
  
  259b2bdd5009e3316cc571ad5c1cd777
- SHA1
  
  c55bbd9f56904b05395598ae240f9bdae0bcbcaa
- SHA256
  
  fb85bea8f92e910d53edabb8310b9f0bff1fa6b0a5d89129068e3b514adb5ea7
- SHA512
  
  92fb4240e463f04fde7ac31404d585b392c2a6b3fb620f913f8599a531673ecafc78614732411ff35ad754095fd99c4bf7fb69a4cb052668fd0aa0b5dfb5264d
- SSDEEP
  
  384:qxOZzyjOnqGAs+8ULueO4NdE8tOOtEvwDpjqIGRYK1sGGYt9non:q0ZziOWwULueOSdE8tOOtEvwDpje6n
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2