4fe30595969da91d231d9bc507e5c56e21ab78e46b5aafc97ad77df823930f4a | Triage

Sharing

General

Target

2024-10-10_bb2f4098cc6b89313d227cae0e9af0c8_cryptolocker
Size

74KB
Sample

241010-f2j7fstfnl
MD5

bb2f4098cc6b89313d227cae0e9af0c8
SHA1

59a4c85e65e87baa4e4e079b6e3a1380f9e1d304
SHA256

4fe30595969da91d231d9bc507e5c56e21ab78e46b5aafc97ad77df823930f4a
SHA512

8992be34326c73b79da6f16cfa15f7e481d445bd6b39e6f13877f4e047fb44b190075f4f9ac6149270bad2b2e7b25ad55a11516bfdc04fb7682db5169509aad6
SSDEEP

768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4U9HueDgaRWDtJgXkeUTYG0C:vj+jsMQMOtEvwDpj5H8u8rLXkemJ9

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2024-10-10_bb2f4098cc6b89313d227cae0e9af0c8_cryptolocker
- Size
  
  74KB
- MD5
  
  bb2f4098cc6b89313d227cae0e9af0c8
- SHA1
  
  59a4c85e65e87baa4e4e079b6e3a1380f9e1d304
- SHA256
  
  4fe30595969da91d231d9bc507e5c56e21ab78e46b5aafc97ad77df823930f4a
- SHA512
  
  8992be34326c73b79da6f16cfa15f7e481d445bd6b39e6f13877f4e047fb44b190075f4f9ac6149270bad2b2e7b25ad55a11516bfdc04fb7682db5169509aad6
- SSDEEP
  
  768:vQz7yVEhs9+js1SQtOOtEvwDpjz9+4U9HueDgaRWDtJgXkeUTYG0C:vj+jsMQMOtEvwDpj5H8u8rLXkemJ9
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2